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(57) Abstract: A transporter-reader payment system includes a fob (102) including a transponder (114), and a RFID reader (104) 
for interrogating the transponder (102). The system may further include a personalization system (134) for populating onto the 
fob (102) and RFID reader (104) identifying information and security and authentification keys which may be used during mutual 
authentication of the fob (102) and the reader (104) and for completing a transaction. In exemplary operation, the fob (102) and 
RFID reader (104) may be personalized, the fob (102) may be presented to the RFID reader (104) for interrogation, the fob (102) 
and reader (104) may engage in mutual authentication, and fob (102) identifying information may be provided to the reader (104) for 
transaction completion. In another exemplary embodiment, operation of the transponder-reader payment system may be controlled 
by an activation circuit. Further, the fob (102) may be responsive to multiple interrogation signals. 
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1 . A txansponder-reader payment system comprising: 

a a Radio Frequency Identification (RFID) reader operable to provide a radio 
frequency (RF) interrogation signal for powering a transponder system, receiving a 
transponder system RF signal, aiid communicating a transponder system account data related 
to said transponder system RF signal to a merchant system, said RFED reader including, 

i. a first interrogator for providing a iSrst RF interrogation signal; 

ii. a RFID authentication circuit in communication with said interrogator; 

iii. a RFID database, in communication with said RFID authentication 
circuit, said database operable to store at least one of a RFID reader identifying data, a 
transponder system decryption security key, a RFID reader and encryption security key and a 
transponder authentication key; 

iv. at least one of a serial interface and a universal serial bus (USB) 

interface; and 

V. a RFID protocol/sequence controller in communication with at least 
one of said &st interrogator, said RFID authentication circuit, said RFID database, and said 
USB interface, said RFID protocol/sequence controller configured to facilitate control of the 
order of operation of said interrogator^, said RFID auflientication circuit, said RFID database, 
and said USB interface. 

2. A system according to claim 1 further comprising: 

a. a transponder system operable to receive said first RF interrogation signal, 
authenticate said first RF interrogation signal, and transmit said transponder system account 
data, said transponder system con5)rising: 

i. a first transponder responsive to said RF interrogation signal; 



40 

SUBSTITUTE SHEET (RULE 26) 



wo 03/007623 



PCT/US02/21903 



it. a first transponder system antenna configured to receive said first RF 
interrogation signal; 

iii a second transponder responsive to a second RF iaterrogation signal, 
said first RF interrogation signal different from said second RF interrogation signal; 

iv. a second transponder system antenna configured to receive said second 
RF interrogation system; 

V. a transponder system authentication circuit ia commrmication with at 
least one of said first transponder and said second transponder; and 

vi. a transponder system database in communication with said transponder 
system authentication circuit 

3. A system according to claim 2, wherein said transponder system fijrther includes: 
a a transponder system USB interface; and 

b. a transponder system protocol/sequence controller in communication with at 
least one of said first transponder, said second transponder, said transponder system USB 
interface, said transponder system authentication circuit, and said transponder system 
database, said transponder system protocol/sequence controller configured to control the 
order of operation of said first transponder, said second transponder, said transponder system 
authentication circuit, said transponder system database, and said transponder system USB 
interface. 

4. A system according to claim 1 , wherein said RFID reader further includes: 

a. a second interrogator, said second interrogator operable to send a second RF 
interrogation signal; and 

b. a RFID communications interface configured to cormnunicate with a merchant 
system, said communications interface operable to provide said transponder system account 
data 
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5. A system according to claim 4, wherein said RFID reader further inchides a first 
antenna in commxmication with said first interrogator and a second antenna in conunmiication 
with said second interrogator, wherein said first antenna is operable to provide said first RF 
interrogation signal to said first transponder and said second interrogator is operable to 
provide said second RF interrogation signal to said second transponder. 

6. A system according to claim 1 , wherein said RFID database is operable to store a 
transponder system personal identification number (PIN). 

7. A system according to claim 5, wherein said RFID reader further comprises at least 
one of a RFID internal antenna, and a RFID external antenna, said RFID internal antenna and 
said RFID external antemia configured to provide at least one of said first RF interrogation 
signal and said second RF interrogation signal. 

8. A system according to claim 3, wherein said transponder system protocol/sequence 
controller is responsive to at least one of said first RF interrogation signal and said second RF 
interrogation signal, said transponder protocol/sequence controller controlhng the sequence 
of operation at least one of said transponder system authentication circuit, said transponder 
system database, and said transponder system USB interface in response to at least one of 
said first RF interrogation signal and said second RF interrogation signal. 

9. A system according to claim 3, wherein said transponder system protocol/sequence 
controller is configured to activate said transponder system authentication circuit in response 
to said first RF interrogation signal, said transponder system authenticating circuit configured 
to provide an encrypted RF interrogation signal, said transponder system authentication 
circuit configured to provide said encrypted RF interrogation signal to said first transponder 
for providing to said RFID reader. 

10. A system according to claim 9, wherein said RFID reader is configured to receive said 
encrypted RF interrogation signal, said transponder system protocol/sequence controller 
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activating said transponder system authentication circuit in response to said encrypted RF 
interrogation signal. 

11. A system according to claim 1 0, wherein said RFID database is configured to provide 
a transponder system decryption key to said RFID authentication circuit in response to said 
encrypted RF interrogation signal, said transponder system decryption key for use in 
decrypting said encrypted RF interrogation signal, providing a decrypted RF interrogation 
signal, said transponder system decryption key provided to said RFID reader based on an 
unique transponder identification code. 

12. A system according to claim 1 1 , wherein said RFID authentication circuit is 
configured to compare said decrypted RF interrogation signal and said RF interrogation 
signal to determine whether a match exists. 

13. A system according to clahn.l2, wherein said RFID protocol/sequence controller is 
configured to activate at least one of said USB interface and said RFID communication 
interface where said RFID authentication circuit matches said decrypted RF interrogation 
signal and said RF interrogation signal. 

14. A system according to claim 13, wherein said traitisponder system protocol/sequence 
controller activates said transponder system authentication circuit in response to at least one 
of said first RF interrogation signal and said second RF interrogation signal. 

15. A claim according to claim 14, wherein said transponder system authentication circuit 
is configured to provide a transponder authentication code to at least one of said first 
transponder and said second transponder for providing to said RFID reader. 

16. A system according to claim 15, wherein said RFID reader is configured to receive 
said transponder autiientication code, said RFID protocol/sequence controller activating said 
RFID authentication circuit in response to said transponder authentication code, said RFID 
authentication circuit configure to aicrypt said transponder authentication code. 



43 

SUBSTITUTE SHEET (RULE 26) 



wo 03/007623 PCT/US02/21903 

17. A system according to claim 16, wherein said RFID reader is configured to provide 
said encrypted authentication code to said transponder system. 

18. A system according to claim 17, wherein said transponder system database is operable 
to store at least one of a transponder system identification data, a RFID reader decryption 
security key, and a transponder system account data. 

19. A system according to claim 1 8, wherein said transponder system database is 
configured to provide said RFID reader decryption security key to said transponder system 
authentication circuit in response to said encrypted authentication code, said RFED reader 
decryption key for use in decrypting said encrypted transponder authentication code and 
providing a decrypted transponder authentication code. 

20. A system according to claim 19, wherein said transponder system authentication 
circuit is configured to coropare said decrypted transponder authentication code and said 
transponder authentication code to determine if a match exists. 

21 . A system according to claim 20, wherein said account data is in magnetic stripe 
format. 

22. A system according to claim 2 1 , wherein said transponder system transaction account 
data is pre-encrypted. 

23. A system according to claim 22, wherein said transponder system database is 

■ configured to provide said pre-encrypted transponder system account data to said RFID 
reader where said transponder system authentication circuit matches said decrypted 
transponder auttentication code and said transponder authentication code. 

24. A system according to claim 23, wherein said RFID communications interface is 
configured to provide said transponder system PIN and said pre-encrypted transponder 

r 

S3^tem accoomt data where said transponder authenticatioii code matches said decrypted 
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transponder authentication code, and said decrypted RF interrogation signal matches said RF 
interrogation signal. 

25. A system according to claim 24, wherein said transponder system further comprises a 
switch, said switch operable to enable or disable operation of said transponder system. 

26. A system according to claim 25, wherein said switch is configured to place the 
transponder system in at least one of a selectivity mode and an inclusivity mode. 

27. A system according to claim 25, wherein said switch is mechanicaL 

28. A system according to claim 25, wherein said switch is configured to respond to a 
logic circuit. 

29. A system according to claim 2, wherein said transponder system further includes an 
internal power source. 

30. A system according to claim 29, wherein said switch is in communication with said 
internal power source, said switch responsive to said internal power source. 

31. A system according to claim 29, wherein said transponder system further includes a 
biometric circuit, said biometric circuit in communication with said internal power source. 

32. A system according to claim 25, wherein said switch is a biometric circuit, said 
biometric circuit operable to enable or disenable operation of said transponder system. 

33. A system according to claim 32, wherein said biometric circuit is configured to place 
said transponder system in one of a selectivity mode and an inclusivity mode. 

34. A system according to claim 7, wherein said RFID reader includes a RFID PIN 
keypad, said RFID PIN keypad configured to receive said transponder PIN, said RFID reader 
configured to compare said transponder PIN to said received transponder PIN, said RFID 
reader operable to provide at least one of said received transponder PIN, said transponder 
PIN, or a verification of said received transponder PIN, verification of received transponder 
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PIN provided where said RFID reader matches said transponder PIN to said received 
transponder PIN. 

35. A system according to claim 7, wherein said RFID reader is configured to provide 
said transponder PIN to a payment authorization center for verification of said transponder 
PIN. 

36. A system according to claim 34, wherein said merchant system includes a merchant 
system PIN keypad, said merchant system PIN keypad configured to receive said transponder 
PIN from said merchant system PIN keypad, said merchant system configured to provide said 
transponder PIN to said payment authorization center for verification. 

37. A system according to claim 31, wherein said biometric circuit is configured to 
provide a biometric data verification response, said biometric circuit configured to provide 
said biometric data verification response to at least one of said RFID reader and said 
merchant system, whereiu said biometric data verification response is an identification 
verification data 

38. A system according to claim 3, furtlier corcprising a personalization system operable 
' to initialize at least one of said transponder system and said RFID reader to transponder- 

reader payment system parameters. 

39. A system according to claim 38> wherein said personalization system is in 
communication with said transponder system using at least one of a USB coimector and RF 
communications . 

40. A system according to claim 39, wherein said personalization system is in electrical 
communications with said RFID reader. 

41. A system according to claim 40, wherein said personalization system is operable to 
populate at least one of said RFID reader identifying data, transponder system decryption 
security key, RFID encryption security key, and transponder PIN on said RFID database. 
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42. A system according to claim 41 , wherein said personalization system is operable to 
populate at least one of said transponder system identification data, a RFID reader decryption 
security key, a transponder encryption auflientication security key, a transponder system 
transactional account data, and a transponder system authentication security key onto said - 
transponder system database. 

43. A system according to claim 2, wherein said RFID reader is operable to initialize said 
transponder. 

44. A system according to claim 2, wherein said RFID reader is in RF communication 
with said transponder system, said RFID reader operable to populate at least one of said 
transponder system identification data, a RFID reader decrj^^tion security key, a transponder 
system transactional account data onto said transponder system database. 

45. A transponder-reader payment system including a transponder system operable to 
receive a first RF interrogation signal, and authenticate said first RF interrogation signal, said 
transponder system comprising: 

a a first transponder responsive to said first RF interrogation signal; 

b. a second transponder responsive to a second RF interrogation signal, 
said first RF interrogation signal different from said second RF interrogation signal; 

c. a first transponder system antema configured to receive said first RF 
interrogation signal; and 

d a second transponder system antenna configured to receive said second 
RF interrogation signal. 

46. A system according to claim 45, wherein said transponder system further includes at 
least one of a transponder system USB interface, transponder system authentication circuit, 
and a transponder system serial interface. 

47. A transponder-reader payment system comprising: 
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a a RFID reader operable to provide a RP interrogation signal for powering a 
transponder system, receiving a transponder system RF signal, and communicating a 
transponder system account data related to said transponder system RF signal to a merchant 
system, said RFID reader including: 

i a first RFID reader antenna in conmmnication with a first interrogator 
for providing a first RF interrogation signal; and 

ii. a second RFID reader antenna in communication with a second 
interrogator, for providing a second RF interrogation signal; 

b. a transponder system operable to receive at least one of said first and second 
RF interrogation signal, authenticate said received interrogation signal, and transmit a 
transponder system account data, said transponder system coiriprising: 

i a first transponder antenna in communication with a first transponder, 
said first transponder responsive to said first RF interrogation signal; and 

ii a second transponder antenna in communication with a second 
transponder, said second transponder responsive to said second RF interrogation signal. 

48. A system according to claim 47, wherein said RFID reader includes at least one of a a 
RFID reader authentication circuit, a RFID reader serial interface and a RFID reader USB 
interface, and said transponder system includes at least one of a transponder system USB 
interface, transponder system authentication circuit, and a transponder system serial interface. 

49. A method of transponder-reader payment comprising the stq)s of: 

a providing a transponder system,, the transponder system responsive to a 
plurality of interrogation signals, the transponder system storing at least one of an account 
data, an account name, and accoxmt expiration date, the transponder system including at least 
a first transponder responsive to a first interrogation signal and a second transponder 
responsive to a second interrogation signal; and 
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b. providing a RFED reader, said reader configured to provide at least one of the 
interrogation signals. 

50. A method accordnxg to claim 49, further conprising the steps of: 
a encrypting the transponder system account data; 

b. initiali2dng the transponder system; 

c. initializing the RFID reader; 

d. mutually authenticating the RFID reader and the transponder system; 

e. providing the encrypted account data from the transponder system to the RFID 

reader; 

f. decrypting the encrypted account data; and 

g. providing the decrypted account data to a merchant system. 

51 . A method according to claim 50, wherein mutual authenticating includes the RFID 
reader authenticating the transponder system, and the transponder system authenticating the 
RFID reader. 

52. A method according to claim 5 1 , wherein mutual authentication includes: 

a providing an interrogation signal from the RFID reader to the transponder 

system; 

b. encrypting the interrogation signal at the transponder system to form an 
encrypted authentication interrogation signal; 

c. providing tlie encrypted authentication interrogation signal to the RFID reader; 

d. decrypting the encrypted authentication interrogation signal at the RFID 
reader, decrypting including using a transponder system decryption security key; 

e. matching the interrogation signal to the decrypted interrogation signal; 
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f. providing an authorization code from the transponder system to the RFID 

reader; 

g. encrypting the authorization code at the RFID reader to form an encrypted 
authorization code; 

h. providing the encrypted authorization code to the transponder system; 
i decrypting the encrypted authorization code at the transponder system, 

decrypting including using a RFID reader decryption security key; and 

j. matching the authorization code to the decrypted authorization code. 

53. A method according to 52, where initializing tiie transponder system includes 
populating at least one of a transponder system identification data, a RFID reader decryption 
security key, a transponder system transactional data, and an encrypted transponder PIN onto 
a transp onder system datab ase. 

54. A method according to claim 53, wherein initializing the RFID reader includes 
populating at lease one of a transponder system identification data, a RFID reader decrsption 
security key, a transponder system transactional data, and an encrypted transponder PIN onto 
a transponder system database. 

55. A method according to claim 49, wherein initializing the RFID reader includes 
populating at least one of a RFID reader identifying data, a transponder system decryption 
security key, a RFID encryption security key, and a transponder PIN onto a RFID database 
using a USB interface. 

56. A method according to claim 53, wherein initializing the transponder system includes 
populating at least one of a transponder system identifying data, a RFID reader decryption 
security key, and a transponder system transaction data using a USB interface. 

57. A method according to claim 49, wherein initiaUng the transponder system, includes 
initializing said transponder system using a RFID reader. 
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58. A method accordiag to claim 54^ iacludiag using a switch to enable the transponder 
system, the switch consisting of at least one of a mechanical switch, a logic switch, and a 
biometric switch. 

59. A method according to claim 58, including providing a secondary identification in 
response to a request from a merchant system. 



51 

SUBSTITUTE SHEET (RULE 26) 



(12) INTERNATIONAL APPLICATION PUBLISHED UNDER THE PATENT COOPERATION TREATY (PCX) 



(19)Woridlii(ellectualPropertyOr!gaDizatioii 
IntematioiaJ Buicau 

(43) InternatioDal Publication Date 
23 January 2003 (23.01.2003) 




PCT 



iiiBiiiiiiiiiiiiiiiiin 

(10) International Publication Number 

WO 03/007623 A2 



(51) iDtersatiooalPatcDCCIassificatioo': 
G05B 19/00 



H04Q I/OO. 



(22) IbtematioDal Applicatioa Number: PCr/US02/219Q3 
(22) iDtcniatioiul Filing Date: 1 0 July 2002 (1 0.07.2002) 



(25)' riliD£ Language: ' 

(2() Publicatioii Language: 

(30) Priority Data: 
60^04^16. 



English 
English 



10 Joly 2001 (10.072001) US 



(71) Applicant: AMERICAN EXPRESS TRAVEL RE- 
LATED SERVICES COMPAGNY, INC [USAJS]; 
American Express Ibwer, Worid Rnancial Cenier» New 
York, NY 10285-4900 (US). 

(72) iiiveDtor3:BERARDI>Micbael,J.;7770NW50thStreet, 
#306» LaoderhSI, FL 33313 (US). BLIMAN, Midial; 4 
Dog>rood Circle. Matawan, Nl 07747 (US). BONALLE, 



David, S.; 77 Rose HUl Avenue, New Rochdle, NY 10804 
(US). ELWOOD, Jeooifer, Aaoe; 115 Bast 34th Street,' 
Apt #8-G, New Ywk Gty. NY 10016 (US). HOOD, 
Matthew, C; 1112 LaPayette Road. Waynes PA 190S7 
(US). ISENBERG, Susau, E.; 201 West 74 th. 12 th. 
New Yoxk Qty» NY 10012 (US). MAYERS, Alezandn; 
49 Grove Street, #5-B, New Yoric Gty, NY 10014 (USX 
SAUNDERS, Peter, D.; 3710 Bast Palisade Drive. Salt 
Lake Qiy, UT 84109 (US). SCHEDING, Kathryn, Ua 
12301 Oovcr Avenue, Los Angeles, CA 90066 (US). 
SHAH, Sejal, Ajit; 230 Bast 30th Street. #1 1 -J, New York 
Gty, NY 10016 (US). WILLUMSON, John, R.; 302 
Panronia Avenue, Jers^ Gty, NJ 07302 (US). 

(74) Agent: SOBELMAN,Howard,L;SneJl&WjroerL.LJP., 
One Arizona Center, 400 East Van Buien, Phoenix, AZ 
85004-2202 (US). 

(81) Designated States (n^Uhnal): AE, AG, AL, AM, AT. AU. ' 
A2, BA, BB. BG, BR, BY, BZ, CA, CH, CN. CO. CR, CU, 
qS. DE. DK, DM, DZ, EC, EE, ES, FI. GB. GD, OB, GH. 
GM, HR, HU. ID. IL, IN. IS. JP. HE. KG, KP, KR, KZ, LC 
LK, LR, LS. U. LU. LV. MA, MD. MG, MK, MN, MW. 
to, MZ, NO, NZ, OM, PH, PL. PT, RO, RU, SD, SB, SO. 

[Cominued on next page] 



(54) Title; SYSTEM AND METHOD FOR PAYMENT USINO RADIO FREQUENCY IDENIIFICATION W CONTACT AND 
CCiNTACILESS TRANSACTIONS 




5? 

vo 
o 

^ (57) Abstract: A tran^iter-ireader paymient system tnclodes a fob inclnding a transponder, lAid a ItFQ) reader for interrogating 
^ the transponder: The system may fnrther inchide a personalization system for populadng onto fhe fob and RFQD reader identifying 
2 infonnation and secnrity and amhentification keys which may be nsed daring mutoal aothenlication of die fob and the reader and 
for completing a transactioa In exemplaiy operation, the fob and RFID reader may be personalized, the fob may be presented to 
Q the RFID reader for interrogation, the fob and reader may engage in matnal anthhentication, and fob identifying infonnation may be 
pj^ provided to the reader for transaction .com|;rietion. In another exemplary embodmenl, operation of the transponder-reader payment 
^ system may be controlled by an actfvation circttit. Further, the fob may be responsive to multiple intenogation signals. 



wo 03/007623 A2 liiiliiilliiiiililiiO. 



I 



SI, SK, SU n, TM, TN» TR, IX TZ, UA. UG, UZ. VN, Published: 

YU, ZA, ZV. — withimt international search report and to be republished 

taonrecemt of that report 

(84) Designated States fiegionaO: ARIlO patdit (GH, GM, 

KB, LS, MW. M2; SD, SU SZ» 12, UG, ZM. ZWX ^ , ^ ^ , 

Eniasbnpatent(AM, AZ,BY,KO,KZ,MD,RU,TJ,™). ^ortwo-letter codes and other abbreviatfons, refer to the "Guid- 

Enropean patent (AT, BB, BO, OT, CY, CZ, DE, DK, EE, ^ ^ aridAbbieviations''<q)peanngatthe begfn- 

ES, H, FR, GB. GR, IB, IT, LU. MQ, NL. FT, SB, SK, "'"S ofeach regular issue of the PO^Oaiette. 
TR), OAPI patent (BF, BJ. CF, CO, CI. CM, OA, ON. GQ, 
GW. ML. MR, NE, SN, TO. TO). 



wo 03/007623 PCT/US0M1903 

SYSTEM AND METHOD FOR PAYMENT USING RADIO FREQUENCY 
IDENTIFICATION IN CONTACT AND CONTACTLESS TRANSACTIONS 

■ 

Field of Invention 

5 This invention generally relates to a system and method for completing a 

transaction, and more particularly, to completing a finianQal transaction using Radio 
Frequency Identification (RFID) in contact and contactless transactions. 

Background of the Invention 

10 Like barcode and voice data entry, RFID Is a contactless inforniation 

acquisition technology. RFID systems are wireless, and are usually extremely 
effective in hostile environments where conventional acquisition methods fail. RFID 
has established itself in a wide range of markets, such as, for example, the high* 
speed reading of railway containers, tracking moving objects such as livestock or 

15 automobiles, and retail inventory applications. As such, RFID . technology has 
become a primary focus in automated data collection, identification and arialysis 
. systems worldwide. 

Of late, companies are incr^singly embodying RFID data acquisition 
technology in a fob or tag for use in completing financial transactions. A typical fob 
' 20 includes a transponder and is ordinaril/ a self-contained device which may be 
contained on any portable fonn fector. In some instances, a battery may be 
included with the fob to power the transponder. In which case the internal drcuitry 
of the fob (including the transponder) may draw its operating power fron the battery 
power source. Alternatively, the fob may exist Independent of an intemal power 

25 source. In this instance the intemal circuitry of the fob (including the transponder) 
may gain its operating power directly from an RF Interrogation signal. U.S. Patent 
No. 5,053,774 issued to Schuenmann describes a typical transponder RF 
interrogation system whfch may be found in the prior art. The Schuermann patent 
describes in general the powering technology sun'ounding conventional transponder 

30 stnictures. U.S. Patent No. 4,739,328 discusses a method by which a conventional 
transponder may respond to a RF intenogation signal. Other typical modulation 
techniques which may be used include, for example, ISO/IEC 14443 and the like. 
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In the conventional fob powering techrtoldgies used, the fob is typically 
activated upon presenting the fob in an interrogation signal, in this regard, the fob 
may be activated irrespective of whether the user . desires such activation. 
Inadvertent presentation of the fob may result in initiation and completion of an 

« 

5 unwanted transaction. Thus, a fob system is needed v»hich allows the fob user to 

control activation of the fob to limit transacOohS being undesirably completed. 

One of the more visible uses of the RFID technology is; found in the 
introduction of Exxon/Mobil's Speedpass® and Shell's EasyPay® products. These 
products use transponders placed in a fob or tag which enables automatic 

10 . identification of the user when the fob is presented at a Point of Sale (POS) device. 
Fob identification data is typically passed to a third party server database, where the 
identification data is referenced to a customer (e.g., user) credit or debit account. In 
an exemplary processing method, the server seeks authorization for the transaction 
by passing the transaction and account data to an authorizing entity. Once 

15. authorization is received by the server, dearahce is sent to the point of sale device 
for completion of the transaction. In this way, the conventional transaction 
processing method involves an indirect path which causes undu^ overhead due to 
the use of the third-party server. 

A need exists for a transaction authorization system which allows Fob 

20 transactions to be authorized while eliminating the cost assotiated with using third- 
party servers. 

In. addition, conventional fobs are limited In that they must be used in 
proximity to the Point of Sale device. That is, for fob activation, conventional fobs 
must be positioned within the area of transmission cast by the RF interrogation 
25 signal. More particularly, conventional fobs are not affecOve for use in situations 
where the user wishes to conduct a transaction at a point of interaction such as a 
computer interiiace. 

Therefore, a need exists for a fob embodying RFjD acquisition technology, 
which is capable of use at a point of sale device and which is additionally capable of 
30 facilitating triansactiohs via a computer interface connected to a networi( (e.g., the 
Internet). 

Existing transponder-reader payment systems are also limited in that the 
conventional fob used in the systems Is only responsive to one interrogation signal. 
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Thus, where multiple interrogab'on signals are used, the fob Is only responsive to the 
interrogation signal to which It is configured. If the RFID reader of the system 

w 

prowdes only an interrogaHon signal to which the fob is incompatible, the fob will not 
be property activated. 

5 Therefore, a need exists for a fob which is responsive to more than one 

• ■ 

inten^ogation signal. 

Summary of the Invention 

Described herein Is a system and method for using RFID technology to 
10 initiate and complete financial transactions. The transponder-reader payment 
system, described herein may include a RFID reader operable to provide a RF 

■ 

/ interrogation signal for powering, a transponder s^tem, receiving a transponder 
system RF signal, and providing transponder system account data relative to the 
transponder system signal. The transponder-reader payment system may 

1 5 Include a RFID protocol/sequence controller in electrical communication with one or 
more Interrogators for providing an interrogation signal to a transponder, a RFID 
authentication circuit for authenticating the signal received from the transponder, a 
serial or parallel Interface for interfacing with a point of interaction device, and an 
USB or serial interface for use in personalizing the RFID reader andtor the 

20 transponder. The transponder-reader payment system may further include a fob 
including one or more transponders (e.g., modules) responsive to the intenogatlon 
signal and for providing an authentication signal for verifying that the transponder 
and/or the RFID reader are authorized to operate within the transponder-reader 
payment system. In this way, the transponder may be responsive to multiple 

25 interrogation signals provided at different frequencies. Further, the transponder n&y 
include a USB or serial interface for use with a computer network or with the RFID 
reader. 

The RFID system and method according to the present invention may include 
d RFID-ready temiinal and a transponder which may be embodied in a fob, tag, card 
30 or any other fomi factor (e.g.. wristwatch, keychain, cell phone, etc.), which may be 
capable of being presented for intenogatlon. In that regard, although the 
transponder is described herein as embodied in a fob, the invention is not so limited. 
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The system may further include a RFID reader configured to send a standing 
RFiD recognition signal which may be transmitted from the RFID reader via radio 
frequency (or electromagnetic) propagation. The fob may be placed within proximity 
to the RFID reader such that the RFID signal may inten-ogate the fob and initialize 
5 fob identification procedures. 

In one exempiary embodinient, as a part of the Identificalibn prdcess< tlie fob 
and the RFID reader may engage in mutual authentication. The RFID reader may 
identify the fob as including an authorized system transponder for receiving 
encrypted information and storing the information on the fob memory. Similarly, the 

10 fob, upon interrogation by the RFID reader, may. identify the RFID reader as 
authorized to receive the encrypted and stored information. Where the RFID reader 
and the fob successfully mutually authenticate, the fob may transmit to the RFID 
reader certain information identifying, the transaction account or accounts to which 
the fob is assodated. The RFID reader may receive the ihfonmalion and forward the 

15 infonnation to facilitate the completion of a transaction. In one exemplary 
embodiment, the RFID reader may fonn/ard the infomnation to a point of interaction 
device (e.g., POS or computer interface) for transaction connpletlon. The mutual 
authorization process disclosed herein aids in ensuring fob transponder-reader 
payment system security. 

20 In another exemplary enibodiment, the fob according to the present 

invention, includes means for completing transactions via a computer interface. The 
fob may be connected to the computer using a USB or serial interface fob account 
information may be transfen'ed to the conriputer for use in completing a transaction 
viia a networic (e.g., the Internet). 

25 These features and other advantages of the system and method, as well as 

the structure and operation of various exemplary embodiments of the system and 
method, are described below. 

Brief Description of the Drawinos 
30 the accompanying drawings, wherein like nurtierals depict like elernents, 

illustrate ^emplary embodiments of the present invention, and together with the 
description, serve to explain the principles of the invention. In the drawings: 
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FIG. 1A illustrates an exemplary RFID-based system in accordance with the 
present invention, wherein exemplary, components used for fob transaction 
completion are depicted; 

FIG. IB illustrates an, exemplary personalization system in accordance with 
5 the present invention;. 

FIG. 2 is a schematic illustration of ah exemplary fob in accordance with the 
present invention; 

FIG. 3 is a schematic illustration of an exemplary RFID reader in accordance 
. with the present invention; 
10 FIG. 4 Is an exemplary flow diagram of an exemplary authentication process 

. in accordance with the present invention; 

FIG. 5 is an exemplary flow diagram of an exemplary decision process for a 
protocol/sequence controller in accordance with the present invention; 

FIGS. 6A^B are an exemplary flow diagram of a fob personalization process 
15 in accordance with the present invention; . 

FIGS. 7A-B are an exemplary flow diagram of a RFID reader personalization 
process in accordance with the present invention; 

FIG. 8 is a flow diagram of an exemplary paynrtent/transaction process in 
accordance with the present invention; and 
20 FIG. 9 is another schematic illustration of an exemplary fob in accordance 

with the present invention. 

Detailed DesCrlptfon 

The present invention may be described herein in terrris of functional block 

25 components, screen shots, optional selections and various processing steps. Such 
functional blocks, may. be realized hy any number of hardware and/or software 
components configured to perform to specifled functions. For example, the present 
invention may employ various integrated circuit components, e.g., nriemory 
elements, processing elements, logic elements, jook-up tables, and the like, which 

30 may carry out a variety of functions under the control of one or more 
mircroprocessors or other control devices. Simiiariy, the software elements of the 
. present invention may be implemented with any programming or scripting language 
such as G, C+-I-, Java, COBOL, assembler, PERL, extensible markup language 
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(XMLX JavaCard and MULTOS with the various algbrithms being implemented with 
any combination of data .stmctures, objects, processes, routihes or other 
programming elements. Further, it should be rioted that the present invention may 
employ any number of conventional techniques for data transmission, signaling, 
5 data processing, network control, and the like. For a basic Introduction on 
cryptography, review a text written, by Bruce Schheier entitled ''Applied 
Cryptography: Protocols, Algorithms, and Source Code in C," published by John 
Wiley & Sons (second edition, 1996), herein incorporated by reference. 

In addition, many applications of the present Invention could be formulated. 
10 The exemplary network disclosed herein may include any system for exchanging 
data or transacting business, 3uch as the intemet, an intranet, an extranet, WAN, 
t^N, satellite comnrujhications, and/or the like. It is noted that the network may be 
implemented as other types of networks, such as an interactive television network 
(ITN). 

15 Where required, the system user may interact with the system via any input 

device such as, a keypad, keyboard, mousey kiosk, personal digital assistant, 
handheld computer (e.g.. Palm Pilot®, Blueberry®), cellular phone and/or the like. 
Sinriilarly, the invention could be used in conjunction with any type of personal 
computer, network computer, work station, minicomputer, riiainframe, or the like 

20 rurining any operating system such as any version of Windows, Windows NT, 
Windovi/s 2000, Windows 98, Windows 95, MacOS, OS/2, BeOS, Linux, UNIX, 
Solaris or the like. Moreover, although the Invention may frequently be described as 
being implemented with TCP/IP conutuinications protocol, it should be understood 
that the invention could also be implemented using SNA, IPX, Appletalk, IPte, 

25 NetBIOS, OSI or any number of communications protocols. Moreover, the system 
contemplates, the use, sale, or distribution of any goods, services or information 
over any networic having similar functionality described herein. 

FIG. 1A illustrates, an exemplary RFID transaction system 100A in 
accordance with the present invention, wherein exemplary components for use in 

30 completing a fob transaction are depicted. In general, the operation of system 100A 
may begin when fob 102 is presented for payment, and is inten-ogated by RFID 
reader 104 or, alternatively, interface 134. Fob 102 and RFID reader 104 may then 
engage in mutual authentication after which the transponder 102 may provide the 

6 
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transponder identification and/or account identifier to the RFIO reader 104 which 
may further provide the information to the merchant system 130 POS device 110. 

System 100A may include a fob 102 having a transponder 1 14 and a RFID 
reader 104 in RF communication with fob 102. Although the present invention is 
5 described with respect to a fob 102, the invention is not to be so linhited. Indeed, 
system 100 nriay include any device having a transponder which is configure to 
communicate with a RFID reader 104 via RF communication. Typical devices may 
include, for example, a key ring, tag, card, cell phone, wristwatch or any such fonn 
capable of being presented for interrogation. 

10 .The RFID reader 104 may be configured to coipmunicate using a RFID 
ihtemal antenna 106. Alternatively, RFID reader 104 may include an external 
antenna 108 for communications with fob 102, where the extemal antenna may be 
made remote to the RFID reader 104 using a suitable cable and/or data link 120. 
RFID reader 104 may be further in communication with a merchant system 130 via 

15 a data link 122. The system 100A may include a transaction completion system 
including a point of interaction device such as, for exampje, a merchant point of sale 
(POS) device 110 or a computer interface (e.g., user interface) 134. In one 
exemplary embodiment the transaction completion system rhay include a merchant 
system 1 30 including the POS device 1 1 0 in communication with a RFID reader 1 04 

20 (via data link 122). As described more fully below, the transaction completion 
system may include the user interface 134 connected to a networic 136 and to the 
transponder via a USB connector 1 32. 

■ 

Although the point of interaction device is described herein with respect to a 
merchant point of salei (POS) device, the invention is not to be so limited. Indeed, a 

25 merchant POS device is used herein by way of example, and the point of interaction 
device may be any device capable of receiving fob account data. In this regard, the 
POS may be any point of interaction device enabling the user to conplete a 
transaction using a fob 102. POS device 110 may be in further communication with 
a customer internee 118 (via data link 128) for entering at least a customer identity 

30 verification information. Inaddition, POSde>^ce110nfiaybelncorTlmunicationvvith 
a merchant host networl< 112 (via data link 124) for processing any transaction 
request. In this arrangement, information provided by RFID reader 104 is provided 
to the POS device 1 1 0 of merchant system 1 30 via data link 122. The POS device 
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110 may receive the information (and alternatively may receive any identity verifying 
information from customer interface 118 via data linic 128) arid provide the 
information to host system 1 12 for processing. 

A variety of conventional communications media and protocols may be used 
5 for data links 120, 122, 124, and 128. For example, data links 120, 122, 124, and 
128 may be an Internet Service Provider (ISP) configured to facilitate 
communications over a local loop as is typically used in connection with standard 
modem communication, cable modem, dish networks, ISDN, Digital Subscriber 
Lines (DSL), or any wireless communication media^ In addition, the merchant 

10 system 130 including the POS device 110 and host network 112 may reside on a 
local area network which interfaces to a remote network (not shown) for remote 
authorization of an intended transaction. The merchant system 130 may 
communicate with the remote networic via a leased line, such as a T1, D3 line, or 
the like. Such communications lines are described in a variety of texts, such as, 

15 "Understanding Data Communications," by Gilbert Held, which is incorporated 
herein by reference. 

An account number, as used herein, may Include any identifier for an account 
(e.g., credit, charge debit, checking, savings, reward, loyalty, or the like) which may 
be maintained by a transaction account provider (e.g., payment authorization 

20 center) and which may be used to complete a financial transaction. A typical 
account number (e.g., account data) may be con-elated to a credit or debit account, 
loyalty account, or rewards account maintained and serviced by such entities as 
American Express, Visa and/or MasterCard or the like. For ease in understanding, 
the present invention may be described with respect to a credit account. However, it 

25 should be noted that the invention is not so liniited and other accountis permitting an 
exchange of goods and services for an account data value is contemplated to be 
within the scope of the present invention. 

In addition, the account number (e.g., account data) may be associated with 
any device, code, or other identifier/indicia suitably configured to allow the consumer 

30 to interact or communicate vMth the system, such as, for exarhple, 
authorization/access code, personal identification number (PIN), Internet code, 
digital certificate, biometric data, and/or other identification indida. The account 
number may be optionally located on a rewards card, charge card, credit card, debit 
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card, prepaid card, telephone card, smart card, miagneUc stripe card, bar code card, 
and/or the like. The account number may be distributed and stored in any form of 
plastic, electronic magnetic, and/or optical device capable of transmitting or 
downloading data to a s^ohd device. A customer account number may be, for 
5 e)(amp!e, a sixteen-digit dredit card number, although each credit provider has its 
om numbering system, such as the fifteen-digit nunfd)ering system used by 
American Express. Each compan/s credit card numbers comply with that 
company's standardized format such that the company using a sixteen-digit format 
will generally use four spaced sets of numbers, as represented by the number ''0000 

■ 

10 ' 0000 0000 0000". In a typical example, the first five to seven digits are reserved for 
processing purposes and identify the issuing bank, card type and etc. In this 
. example, the last sixteenth digit is used as a sum check for the sixteen-digit number. 
The intermediary eight-to-ten digits are used to uniquely identify the customer. The 
account number stored as Track 1 and Track 2 data as defined ia ISO/IEC 7813, 

15 and further i^ay be made unique to fob 102. In one exennplary embodiment, the 
account number may include a unique fob serial number and user identification 
number, as well as spedfic application applets. The account number may be stored 
in fob 102 inside a database 214, as described more fully below. Database 214 
may be configured to store multiple account numbers issued to the fob 102 user by 

20 the same or different account providing, institutions. Where the account data 
corresponds to a loyalty or rewards account, the database 214 may be configured to 
store the attendant loyalty or rewards points data. 

FIG. 2 illustrates a block diagram of the many functional blocks of an 
exemplary fob 102 in accordance with the present invention. Fob 102 may be a 

25 RFID fob 1 02 which may be presented by the user to facilitate an exchange of funds 
or points, etc., for receipt of goods or services. As described herein^ by way of 
example, the fob 102 may be a RFID fob which may be presented for facilitating 
payment for goods and/or services. 

Fob 102 may include ah antenna 202 for receiving an iriterrogation signal 

30 from RFID reader 104 via antenna 106 (or alternatively, via external antenna 108). 
Fob antenna 202 may be in communication with a transponder 114. In one 
exemplary embodiment, transponder 114 may be a 13.56 MHz transponder 
compliant with the ISO/IEC 14443 standard, and antenna 202 may be of the 13 MHz 
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variety. The transponder 114 may be in communication with a transponder 
compatible modulator/demodulator 206 configured to receive the signal from 
transponder 114 and configured to modulate the signal into a forntat readable by 
any later connected circuitry. Further, modulator/demodulator 206 may b6 
5 configured to format (e.g., demodulate) a signal received from the later connected 
circuitry in a fomiat compatible with transponder 1 14 for trjansmitting to RFID reader 
104 via antenna 202. For example, where transponder 114 is of the 13.56 MHz 
variety, modulator/demodulator 206 may be ISO/IEC 14443*2 compliant. 

Modulator/demodulator 206 may be coupled to a protocol/sequence 

10 controller 208 for facilitating control of the authentication of the signal provided by 
RFID reader 104, and for fecilitating control of the sending of the fob 102 account 
number. In this regard, protocol/sequence controller 208 may be any suitable digital 
or logic driven drcuitry capable of facilitating determination of the sequence of 
operation for the fob 102 inner-circuitry. For example, protocol/sequence controller 

15 208 may be configured to determine whether the signal provided by the RFID reader 
104 is authenticated, and thereby providing to the RFID reader 104 the account 
number stored on fob 1 02. 

Protocol/sequence controller 208 may be further in comrhunication with 
authentication circuitry 210 for fadlitating authentication of the signal provided by 

20 RFID reader 104. Authentication drcuitry may be further in communication with a 
non-volatile secure memory database 212. Secure memory database 212 may be 
any suitable ejementary file system such as that defined by ISO/IEC 781 &4 or any 
other elementary file system allowing a lookup of data to be interpreted by the 
application on the chip. Database 212 may be any type of database, such as 

25 relational, hierarchical, object-oriented, and/or the like. Common database products 
that may be used to implement the databases indude DB2 by IBM (White Plains, 
NY), any of the database products available from Grade Corporation (Redwood 
Shores, CA>, Microsoft Access or MSSQL by Miaosoft Corporation (Redmond, 
Washington), or any other database product. Database may be organized in any 

30 suitable manner, Induding as data tables or lookup tables. Assodation of certain 
data may be accomplished through any data assodation technique known and 
practiced in the art. For example, the assodation may be accomplished either 
manually or automatically. Automatic assodation techniques may indude, for 
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exaniple, a database search, a database merge. GREP. AGREP, SQL. and/or the 

like. The assodation step may be accomplished by a database merge function, for 

example, using a ''key field" in each of the manufacturer and retailer data tables. A 

"key field" partitions the database according to the high-level class of objects 

5 defined by the key field* For example, a certain dass may be designated as a key 

field in both the first data table and the second data table, and the two data tables 

rnay then be rfiefged on the basis of the dass data in the key field. In this 

embodiment, the data conresponding to the key field in each, of the merged data 

tables Is preferably the same. However; data tables having similar, though not 

1 0 identical, data in the key fields may also be merged by using AGREP. for example. 

The data nriay be used by protocol/sequence controller 208 for data analysis 

and used for management and control purposes, as well as security purposes. 

Authenficatlon drcuitry may authenticate the signal provided by RFID reader 104 by 

assodation of tlie RFID signal to authentication keys stored on database 212. 
'. - ■ ' 

15 Encryption drcuitry rtiay use keys stored on database 212 to perform encryption 

. and/or decryption of signals sent to or from the RFID reader 1 04. 

In addition, protocol/sequence controller 208 may be in communication with a 

« 

database 214 for storing at least a fob 102 account data, and a unique fob 102 
identification code. Protocol/sequence controller 208 may be configured to retrieve 

20 the account number from database 214 as desired. Database 214 may be of the 
same configuration as database 212 descr|t)ed above. The fob account data and/or 
unique fob identification code stored on database 214 may be encrypted prior to 
storage. Thus, where protocol/sequence controller 208 retrieves the account data, 
afnd or unique fob identification code from database 214. the account number may 

25 be encrypted when bang provided to RFID reader 104. Further, the data stored on 
: database 214 may indude, for example, an unencrypted unique fob 102 
identification code, a user identification, Track 1 and 2 data, as well as spedfic 
application applets. 

Fob 102 may be configured, to respond to multiple interrogation frequency 

30 transrhissiohs provided by RFID reiader 104. That is. as described more fully below, 
RFID reader 104 may provide more than one RF interrogation signal. In this case, 
fob 102 may be configured to respond to the multiple frequences by induding in fob 
102 one or more additional RF signal receiving/transmitting units 226. RF signal 



receiving/Jransmityng unit 226 may ihdude an antenna 218 and tiansfwnder 220 
where the antenna 218 and transponder 220 are compaybie with at least onfe of the 

■ 

additional RF signals provided by RFID reader 104. For example. In one exemplary 
embodiment, fob 102 may include a 134 KHz antenna 218 configured to 
5 communicate vwith a 134 KHz transponder 220. In this exemplary configuraBon. an 
ISQ/IEC 14443-2 compliant modulator/demodulaibr may not b6 required. Instead, 
the 134 KHz transponder may be configured to communicate directly with the 
protocol/sequence controller 208 for transmission and receipt of authenlication and 
account number signals as described above. 

10 In another embodiment, fob 102 may further include a universal seriaf bus 

(USB) connector 132 for interfacing fob 102 to a user interface 134. User interface 
134 may be further in communication with a POS device 110 via a network 136. 
Netvwork 136 may be the Internet, an intranet, or the like as is described above with 
respect to network 112. Further, the user interface. 134 may be similar in 

15 constnjction to any conventional input devices and/or computing systems 
aforementioned for pennitting the system user to Interact with the system. In one 
exemplary embodiment, fob 102 may be configured to facilitate online Internet 
payments. A USB converter 222 may be in communicaUon with a USB connector 
232 for facilitating the transfer of infomratlon between the rrodulator/demodulalor 

20 206 and USB connector 132. AltemaUvely, USB . converter 222 may be in 
communication with protocol/sequence controllej- 208 to fadiitate the transfer of 
information between protocol/sequence controller i208 and USB connector 132. 

Where fob 102 Includes a USB connector 132. fob 102 may be in 
communication with, for exampie, a USB port on user interface 134. The 
.25 infomnation retrieved from fob 102 noy be compatible with credit card and/or smart 
card technology enabling usage of interactive applicatipns on the intemeL No RFID 
reader may be required in this embodiment since the connection to POS device 1 10 
may be made using a USB port on user interface 134 and a network 136. 

Fob 102 may include means for enabling activation of the fob by the user. In 
30 one exemplary embbdintent, a switch 230 which may be ojperated by the user of the 
fob 102. The switch 230 on fob 102 may be used to selectively or indusivdy 
activate the fob 102 for particular uses, hi this cohtext. the lenn 'selectively" may 
mean that the switch 2d0 enables the user to place the fob 102 in a particular 
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Operational mode. For example, the user may place the fob 102 in a mode for 
enabling purchase of a good or of a service using a selected account number. 
Alternatively, the fob may be placed in a mode as such that the fob account number 
. is. provided by USB port 132 (or serial port) only and the fob transponder 114 is 
5 disabled. In addition, the tem "inclusively" noay mean that the fob 102 is placed in 
ah operational mode permitting the fob 102 to be responsive to the RF Interrodetion 
and interrogation via the USB connector 132. In one particular embodiment, the 
switch 230 may remain in an OFF position ensuring that one or rriore applications or 
accounts assodated with the fob 102 are non-reactive to any commands issued by 
10 . RFID reader 104. As used herein, the OFF position may be termed the "normal" 
position of the activation switch 230, although other nomnat positions are 
contemplated. 

In another exemplary embodiment, when the switch 230 is moved from the 
OFF position, the fob 102 n^y be deemed activated by the user. That is, the switch 

15 230 may activate internal dccuitry in fob 102 for pemratting the fob to be responsive 
to RF signals (e.g., commands from RFID reader 104). In this way, switch 230 nrtay 
fadlitate control of the active and inactive state? of the. fob 102. Such control 
increases the system security by preventing inadvertent dr illegal use of the fob 1 02. 
In one exemplary embodiment, switch 230 may be a simple mechanical 

20 device in communication with circuitry which may electrically prevent the fob from 
being powered by a RFID reader. That is, when switch 230 is in its normal position, 
switch 230 may provide a short to the fob 102 intemal drcuitry, preventing fob 102 
from being responsive to interrogation by RF or via the USB connector 230. in this 
arrangement, the switch 230 may be, for exanr^le, a ''nonnally dosed" (NC) 

25 configured switch, which may be electrically connected to the antenna 202 at the 
interface of the antenna 202 and the transponder 114. The switch 230 may be 
depressed, which may open the switch 230 fully activating the antenna 202. 

In yet another exemplary embodiment, the fob 102 may include a biometric 
sensor and biometric membrane configured to operate as switch 230 and acti>^te 

3D the fob 102 when provided biometric signal from the fob 102 user. Such biometric 
signal may be the digital reading of a fingerprint, thumbprint, or the like. Typically, 
where biometric circuitry is used, the biometric circuitry may be powered by an 
intemal voltage source (e.g., battery). In this case, the switch may not be a simple 

• ■ 
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mechanical device, biil a iswitch which Is powered. In yet another exemplary 
embodiment, switch 230 may be battery powered though no blometric drcuitry Is 
present in the fob 102. 

In yet another enrtbodimeht, the switch 230 may be a logic svwtch. Where 
5 switch 230 is a logic switch the. switch 230 control software may be read from the 
sequence controller 208 to selectively cbhtrol the activation of the various fob 102 
comppnents. 

FIG. 3 illustrates an exemplary block diagram of a RFID reader 104 in 
accordance with an exennplary embodiment of th6 present invention. RFID reader 
10 104 includes, for example, an antenna 106 coupled to a RF module 302. which is 
further coupled to a control module 304. In addition. RFID reader 104 may include 

■ 

an antenna 108 positioned remotely from the RFID reader 104 and coupled to RFID 
reader 104 via a suitable cable 120, or other wire or wireless connection. 

RF module 302 and antenna 106 may be suitably configured to facilitate 

15 communication virfth fob 102. Where fob 102 Is fonnatted to receive a signal at a 
particular RF frequency, RF module 302 may be configured to provide an 
Interrogation signal at that sawe frequency. For example, in one exemplary 
embodiment, fob 102 may be configured to respond to an Interrogation signal of 
about 13.56 MHz, In this case, RFID antenna 106 may be 13 MHz arid may be 

20 configured to transmit an intenrogation signal of about 13.56 MHz. That is, fob 102 
may be configured to include a first and second RF module (ag., transponder) 
where the first module may operate using a 134 kHz frequency and the second RF 
module may operate using a 13.56 MHz frequency. The RFID reader 104 may 
Include two receivers which may operate using the 134 kHz frequency, the 13.56 

25 MHZ frequency or both. When the reader 104 is operating at 134 kHz firequehcy, 
only operation with the 134 kHz module on the fob 102 may be possible. When the 
reader 104 is operating at the 13.56 MHz frequency, only operation with the 13.56 
MHz module on the fob 102 may be possible. Where the reader 104 supports both a 
134 kHz frequency and a 13.56 MHz RF module, the fob 102 may receive both 

30 isignals from the reader 1 04. In this case, the fob 1 02 may be configured to prioritize 
selection of the one or the other frequency and reject the remaining firequency. 
Alternatively, the reader 104 may receive signals at both frequences from the fob 
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upon intefTogation. In this case, the reader 104 may be configured to prioritize 
selection of one or the other frequency and reject the ren[)aining frequency. 

Further, protocol/sequence controller 314 may include ah optional feedback 
function for notifying the user of the status of a particular transaction. For example, 

5 the optional feedback may be in the fomn of an lED, LED screen and/or other visual 
display which is configured to light up or display a static, scrolling, flashing and/or 
other message and/or signal to inform the fob 102 user that the transaction is 
initiated (e.g., fob is being interrogated), the fob is valid (e.g., fob is authenticated), 
transaction is being processed, (e.g., fob account nunnber is being read by RFID 

10 reader) and/or the transaction is accepted or denied (e.g., transaction approved or 
disapproved). Suqh an optional feedback may or may not be accompanied by an 
audible indicator (or may present the audible indicator singly) for informing the fob 
102 user of the transaction status. The audible feedback may be a sirnple tone, 
multiple tones, nrHJSical indicator, and/or voice indicator configured to signify when 

15 the fob 102 is being intenrogated, the transaction status, or the like. 

RFID antenna 106 maiy be in communication with a transponder 306 for 
transmitting an interrogation signal and reca'ving at least one of an authentication 
request signal and/or an account data from fob. 102. Transponder 306 may be of 
sintilar descripGon as transponder 1 14 of FIG. 2. In particular, transponder 306 may 

20 be configured to send and/or receive.RF signals in a format compatible with antenna 
202 in sirrfla^ manner as was described with respect to fob transponder 114. For 
example, where transponder 306 is 13.56 MHz RF rated antenna 20Zmay be 13.56 

a 

MHz compatible. Similariy^ where transponder 306 is ISO/IEC 14443 rated, 
antenna 106 may be ISO/IEC 14443 compatible. 

25 RF rriodule 302 may include, for example, transponder 306 in communication 

with authentication circuitry 308 which may be in communication with a secure 
database 310. Authentication circuitry 308 and database 310 . may be of similar 
description and operation as described with respect to authenb'cation circuitry 210 
and secure rnemory database 21 2 of FIG. 2. For example, database 31 0 may store 

30 data con-esponding to the fob 102 which are authorized to transact business over 
system 100. Database 310 may additionally store RFID. reader 104 identifying 
information for providing to fob 102 for use in authenticating whether RFID reader 

15 
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104 is authorized to be provided the fob account number stored on fob database 
214. 

Authentication pircuitry 308 may be of sinvieir description and operation as 
authentication circuitry 210. That is, authentication circuitry 308 may be configured 
5 to authenticate the signal provided by fob 102 in similar manner that authentication 
circuitry 210 may be configured to authenticat6 the signal provided by RFID reader 
104. As is described more fully below* fob 102 and RFID reader 104 engage in 
rhutual authentication. In this context, "mutual authentication" may mean that 
operation of the system 100 may not take place until fob 102 authenticates the 
10 signal from RFID reader 104, and RFID reader 104 authenticates the signal from fob 
102. 

Fig. 4 is a flowchart of an exemplary authentication process in accordance 
with the present invention. The authentication process is depicted as one-sided. 
That Is, the flowchart depicts the process of the RFID reader 104 authenticating the 
16 fob 102, although similar steps may be followed in the instance that fob 102 
authenticates RFID reader 104. 

As noted, database 212 may store security keys for encrypting or decrypting 

■ 

signals received from RFID reader 104. In an. exemplary authentication process, 

where RFID reader 104 is authenticating fob 102, RFID reader 104 may provide an 

■ 

20 interrogation signal to fob 102 (step 402). The interrogation signal may include a 
random code igenerated by the RFID reader authentication drcuit 210, which is 
provided to the fob 102 and which is encrypted using an unique encryption key 
con-esponding to the fob 102 unique identification code. For example, the 

■ • 

protocol/sequence controller 314 may provide a command to activate the 
'25 authenticatior) circuitry 308. Authentication drcuitry 308 riiay provide from database 
310 a fob inten-ogation signal including a random number as a part of the 
authentication code generated for each authentication signal. The authentication 
code may be an alphanumeric code which is recognisable (e.gf., readable) by the 
RFID reader 104 and the fob 102. The authentication code may be provided to the 
• 30 fob 102 via the RFID RF interface 306 and antenna 106 (or alteniaUvely antenna 
108). 

■ 

Fob 102 receives the inten-ogation signal (step 404). The interrogation signal 
including the authorization code may be received at the RF interface 114 via 

m 
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antenna 202. Once the fob 102 is activated, the interrogation sighal induding the 
authorizafion code may be provided to the modulator/demodulator circuit 206 where 
the signal rtiay be demodulated prior to providing the signal to protocol/sBquence 
controller 208. Protocol/sequence controller 208 may recognize the Inten-ogation 
5 signal as a request for authentication of the fob 102, and provide the duthenticaOon 
code to authenUcation circuit 210. The fob 102 may then ericrypt the auth^ticaUon 
code (step 406). In particular, encryplion may be done by authentication circuit 21 0. 
Which may receive the aulhenticaUon code and encrypt the code prior to providing 
the encfypted authentication code to prbiocoi/sequence controller 208. Fob 102 
10 may then provide the encrypted authentication code to the RFID reader 104 (step 
408). Hiat is, the encrypted authenttcatlon code nay be provided to the RFID 
reader 104 via modulator/demodulator cilcuit 206, RF Interface 114 (e.g.. 
transponder 1 14) and antenna 202. 

RFID reader 104 may then receive the encrypted authentication code and 
1 5 decryption it (step 410). That Is, the encrypted authentication code may be received 
at antenna 106 and RF interface 306 and may be provided to authentication circuit 
308. Authenficat'on drcuit 308 may be provided a security authenUcation key (e.g.. 
transponder system decryption key) from database 310. The authentication circuit 
may use the authentication key to decrypt (e.g., unlock) the encrypted authorization 
20 cdde. The authenticaOon key may be provided to the authentication drcuit based on 
the fob 102 unique identification code. For example, the encrypted authenticaUon 

■ 

code may be provided along with the unique fob 102 identification code. The 
auihenticafion drcuit may receive the fob 102 unique identification code and retrieve 
•from the database 310 a transponder system decryption key correlative to the 
unique fob 102 identification code for use in decrypting the encrypted authenUcaUon 
code. 

» 

Once the authentication code is decrypted, the decrypted authenUcation code 
is coinpared to the authenUcation code provided by the RFID reader 104 at step 402 
(step 412) to verify its authenUdty. If the decrypted authorization code Is not 
30 readable (e.g.. recognizable) by the authenUcation drcuit 308, the fob 102 is 
deemed to be unauthorized (e.g., unverified) (step 416) and Uie operation of system 
100 Is tenninated (step 418). Contrarily, If Uie decrypted auUiorization code is 
recognizable (e.g.. verified) by the fob . 102. the decrypted authorization code is 

17 



deemed to be authenticated (step 412). and the transaction is alibwed Id proceed 
(step 414). In one particular embodinrent, the proceeding transaction may mean 
that the fob 102 may aulhenficate the RFID reader 104, although, it shtxdd be 
apparent that the RFID reader 104 may authenUcate the fob 102 prior {o the fob 102 
5 authenUcating the RFID reader 104. 

It should be ndled that in an exfemplaly verificaUbn pfocess» the authetia 
circuit 308 may determine whether the unlocked authoTK^dtion code is idenfical to 
the authdrization code provided in step 402. If the codes are not identical then the 
fob 102.is not authdrized to access system too. Althdugh, the verHlcation process 
1b is described with respect to identicality, identtcaKty is not required. For example, 
authentication circuit 308 may verily the decrypted code through any pi-dtocol,. steps, 
or process for determining whether the decrypted code corresponds to an 
authorized fob 102. 

Authentication circuitry 308 may additionally be in communicaUon with a 
15 protocol/sequence controller 314 of similar operation and description as 

2. That is, protocol/sequence device 
contrdlier 314 may be cenflgured to detemine the drder of dperation df the RFID 
reader 104 components. For example, FIG. 5 illustrates and exenplary decisicn 
prdcess under which prdtocol/sequence controller 314 may operate. 
20 Protocol/sequence controller 314 may command the different components of RFID 

■ 

reader 104 based en whether a feb 102 is present (step 502). For exai^ple. if a fdb 
.102 Is ndt present, then pretdcol/sequence cdntrdller 314 n«ay ccmmand the RFID 

reader 104 to provide an uninterrupted interrdgatidn Signal (Step 504). That is, the 
- J>rdtoCdl/sequence controller may ccmmand the authenticaUdn circuit 308 to provide 
25 an uninterrupted interrogation signal until the presence of a fob 102 Is realized. If a 

» 

fob 102 is present, the protocol/sequence Cdntrdller 314 may ccmmand the RFID 
reader 104 td authenlicate the fob 102 (step 506). 

As ndted abdve. authentication way mean that the. protocol/sequence 
contrdlier 314 may ccmmand the authenticatien circuit 308 to prdvide fdb 102 with 
30 an authdrizatidn cede. If a response is received from fob 102, protocol/sequence 
contrdlier may determine if the respense is a respense td the RFID reader 104 
prdvided authenticatlcn cede, er if the respense is a signal requiring authentication 
(step 508). If the signal requires authenHcation, then Ihe protocol/sequence 
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controller 314 may activate the authehticaticfn circuit as described above (step 506). 
On the other hand» if the fob 1 02 signal is a response to the provided authentication 
code, then the protocol/sequence controller 314 may command the RFID reader 
104 to retrieve the appropriate security key for enabling recognition of the signal 
5 (step 510). that is, the . protocol/sequence controller 314 may command the 
authentication drcuit 308 to retrieve from database 310 a security Key (e.g., 
transponder system decryption key), , unlock the signal, and compare the signal to 
the signal provided by the RFID reader 104 in the authentication process (e.g., step 
506). if the signal is recognized, the protocol/sequence controller 314 may 

10 determine that the fob 102 is authorized to access the system 100. If the signal is 
not recognized, then the fob is considered not authorized. In which case, the 
protocol/sequence controller 314 may command the RFID controller to interrogate 
for authorized fobs (step 504). 

Once the protocol/sequence cbntroller determines that the fob 102 Is 

15 authorized, the protocol/sequence controller 314 may seek to determine if additional 
signals are being sent by fob 102 (step 514). If no additionai- signal is provided by 
fob 102, then the protocol/sequence controller 314 may provide all the con^onents 
of RFID reader 104 to remain idle until such time as a signal is provided (step 51 6). 
Contrarily, where an additional fob 102 signal is providekf, the protocol/sequence 

'20 controller 314 may determine if the fob 102 is requesting access to the merchant 
point of sale term'nal 110 (e.g.. POS device) or if the fob 102 is attempting to 
interrogate the RFID reader 104 for return (e.g., mutual) authorization (step 518). 
Where the fob 102 is requesting access to a merchant point of sale terminal 110, 
the protocol/sequence controller 314 nnay convnand the RFID reader to open 

25 communications with the point of sale temilnal 110 (step 524). in particular, the 
protocol/sequence controller may command the point of sale ternvnal 

* 

communications interface 312 to become active, permitting transfer of data between 
the RFID reader 104 and the merchant point of sale terminal 110, 

On ihe other hand, if the protocol/sequence controller determines that the fob 
30 102 Signal is a mutual inten'ogation isignal, then the protocol/sequence controller 
may command the RFID reader 104 to. encrypt the signal (step 520). The 
protocol/sequence controller 3)4 may command the encryption authentication circuit 

4 

I * * * 

318 to retrieve from database 320 ihe appropriate encryption l<ey in response to the 
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fob 102 mutual interrogation signal. The protocol/sequence controller 314 may then 
command the RFID reader 104 to provide the encrypted mutual interrogation signal 
to the fob 102. The protocol/sequence controller 314 may command the 
authentication circuit 318 to provide an encrypted mutual interrogation signal for the 
5 fob 102 to mutually authenticate. Fob 102 may then receive the encrypted mutual 
inten^ogation signal and retrieve from authentication circuitry 212 a RFID redder 
decryption key. 

Although an exemplary decision process of protocol/sequence controller 314 
is described, it should be understood that a similar dedsion process may be 
1 0 undertaken by protocol/sequence controller 208 in controlling the components of fob 
102. Indeed, as described above, protocol/sequence controller 314 may have 
similar operation and design as protocol/sequence controller 208. In addition, to the 
above; protocol/sequence controllers 208 and 314 may incorporate in the dedsion 
process appropriate commands.for enabling USB interfaces 222 and 316, when the 
1 5 corresponding device Is so connected. 

Encryption/decryption component 318 may be further in communication with 

• ■ 

a secure account number database 320 which stores the security keys necessary 
for decrypting the encrypted fot) account number. Upon appropriate request from 
protocol/sequence controller 314, encryption/decryption component {e.g., drcuitry 

20 318) may retrieve the appropriate security key, decrypt the fob account nunnber and 
fonward the decrypted account number to protocol sequence controller 314 in any 
fomiat readable by any later connected. POS device 110. In one exemplary 
. embodin^nt, the account number may be forwarded in a conventional magnetic 
stripe format compatible with the ISO/lEC 7813 standard. Upon receiving the 

25 account number in magnetic stripe format, protocol/sequence controller 314 may 
fonAteird the account number to POS device 1 10 via a communications interface 312 
and data link 122, as best shown in Rgure 1. POS device 110 may receive the 
decrypted account number and fon^^ard the magnetic stripe forrhatted account 
number to a merchant networic 1 12 for processing under the merchant's business as 

30 usual standard. In this way, the present invention eliminates the need of a third- 
party server. Further, where the POS device 110 receives a riesponse from network 
112 (e,g., transaction authorized or denied), protocol/sequence controller 314 may 
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provide the network response to the RF module 302 for optically and/or audibly 
communicating the response to the fob 102 user 

RFID reader 104 may additionally include a USB interface 316, in 
communication with the protocol/sequence obntroller 314. In one embodiment, the 
5 USB interface may be a RS22 serial data interface. Altemativelyt the RFID reader 
104 may include a serial interface such as, for exarnple, a RS232 interface in 
communication with the protocol/sequence controller 314. The USB connector 316 
may be in communication with a personalization system 116 (shown in FIG. IB) for 
initializing RFID reader 104 to system 100 application parameters. That is, prior to 
10 operation of system 100, RFID reader 104 rnay be In cornhnunication with 

» ■ " 

personalization system 116 for populating database 310 with a listing of security 
keys belonging to authorized fobs 102, and for populating database 320 with the 
security keys to decrypt the fob 102 account numbers placing the account numbers 
in iSO/lEC 7813 format. In this way, RFID reader 104 may be populated with a 
15 unique identifier {e.g., serial number) which may be used by fob authentication 
circuitry 210 to detem^ne \f RFID reader 104 is auttiorized to receive a fob 102 
encrypted account numberJ 

■ ■ 

FIG. IB illustrates an exemplary personalization system.lOOB, in accordance 

■ 

with the present invention. In general, typical personalization system 100B may be 
20 any system for initializing the RFID reader 104 and fob 102 for use in system 100A. 
With reference to FIG. 1B, the similar personalization process for fob 102 may be 
illustrated. For example, personalization system 116 may be in communication with 

■ 

fob 102 via RF ISO 14443 interface 114 for populating fob database 212 with the 

« 

security keys for facilitating authentication of the unique RFID reader 104 identifier. 

25 In addition, personalization system 116 may populate on database 212 a unique fob 
102 identifier for use by RFID reader 104 in determining whether fob 102 Is 
authorized to access system 100. Personalization system 116 may populate (e.g., 
inject) the encrypted fob 102 account number into fob database 214 for later 
providing to an authenticated RFID reader 104. 

30 In one exemplary embodiment, personalization system 116 may include iany 

standard computing system as described above. For example, personalization 
system 116 may include a standard personal computer containing a hardware 
security module operable using any conventional graphic user interface. Prior to 

« 
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populating the security key information account number and unique idehtiiying 
information into the fob 102 or RFID reader 104, the hardware security module may 
authenticate the fob 102 and RFID reader 104 to verify that the components are 
authorized to receive the secure information. 

.5 FIGS. 6A*B illustrate an exemplary flowchart of a personalization^ procedure 

. which may be used to personalize fob 102 and/or RFID reader 104V Although the 
ifollowing description discusses .mainly personalization of fob 102, RFID reader 104 
may be personalized using a similar process. The personalization process, which 
occurs between the personalization system 116 and the device fo be personalized 

10 (e.g., fob 102 or RFID reader 104), may begin, for exanriple at step 602. Mutual 
authentication may occur between the pensonalizaUon system 116 and the device to 
be authenticated in much the same manner as was described above with regard to 

■ 

fob 102 mutually authenticating with RFID reader 104. That is, personalization 
system 116 may transmit a personalization system 116 identifier to the device to be 

is autheriticated which is compared by the device authentication circuitry 210, 308 
against personalization system identifiers stored in the device database 212, 310. 
Where a match does hot occur (step 604), the persorialization process may be 
aborted (step 612). Where a match occurs (step 604), the personalization system 
may prepare a personalization file to be provided to the device to be personalized 

20 (step 606). If the personalization system is operated manually, the personalization 
file may be entered into the personalization system 116 using any suitable system 
interface such as, for example, a keyboard (step 606). Where the personalization 

» 

system 116 operator elects to delay the preparation of the personalization files, the 
system 116 may abort the personalization process (step 610). In this context, the 

25 personalization file may include the unique fob 102 or RFID reader 104 identifier, 
security key for loading into database 212 and 310, and/or security keys for 
decrypting a fob account nunriber which may be loaded in database 320. 

Fob 102 may be personalized by direct connection to the personalization 
system 116 via RF ISO/IEC 14443 interface 114, or the fob 102 may be 

30 personalized using RFID reader 104. Personalization system 1 16 and RFID reader 
104 may engage in mutual authentication and RFID reader 104 nnay be configured 
to transmit the fob personalization file to fob 102 via RF. Once the fob 102 is 
presented to RFID reader 104 (steps 608. 614) for personalization, fob 102 and 
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RFID reader 104 may engage In mutual authentication (step 614). Where the fob 

■ 

102 Is not presented to the RFID reader 104 for personalization, tha personalization 
process may be aborted (step 610). 

If the fob 102 is. detected, the personalization syslen) 116 may create as a 
5 . piart of the personalization file, a unique identifier for providing to the fob 102 (step 

' * ■ • • 

61 6)* The identifier is unique In thal.one identifier may bie given only to a single fob. 
That is, no other fob may have that same identifier. The fob may then be configured 
and loaded with that identifier (step 61 6). 

The encrypted fob 102 account nunriber may be populated Into fob 102 in the 
10 same manner as is described with respect to the fob 102 unique Identifier. That is. 
personalization system 116 may pre-encrypt the account data (step 640) and inject 
the encrypted account into fob database 214. (step 622). The encrypted account 
data may be loaded (e.g., injected) into the fob 102 using RFID reader 104 as 
discussed above. 

15 Once the personalization file is populated into the fob 102, the populated 

information is irreversibly locked to prevent alt^tion, unauthorized reading and/or 
unauthorized access (step 624). Personalizatiori system 1 1 6 may then create a log 
of the personalization file information for (ater access artd analysts by the 
personalizaOon isystem 116 user (step 626). 

20 It should be noted that In the event the pereohalizatlon sj^em 1 1 6 process is 

compromised or intenrupted (step 628)i the persortalization system may send a 
security alert to the user (step 630) and the personalization process may be aborted 

• ■ 

■ 

(step 612). On the other hand,, where no such compromising or interruption exists, 
. the personalizafion system may be prepared to begin initialization on a second 
25 device to be personalized (step 632). 

FIGS. 7A-B Illustrate another exemplary embodiment of a personalization 
process which may be used to personalize RFID reader 104. RFID reader 104 may 
be in communication with a personalization system 116 via RFID reader USB 

■ 

connection 316 (step 702). Once connected, personalization system 116 may 
30 establish comnturiications with the RFID reader 104 and RFID reader 104 may 
provide personalization system 116 any RFID reader 104 identification data 

■ 

presently stored on the RFID reader 104 (step 704). In accordance with step 708, 
where the RFID reader 104 is being personalized for the firist time (step 706) the 
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RFiD reader .104 and the personalizatioh system 116 may engage in mutual 
authentication, as described above with respect to FIGS. 6A-B. After the mutual 

• ■ 

authentication is complete, personalization system 116 may verify that RFID reader 
104 is properiy manufactured or configured to operate within system 100. The 
5 verification may include evaluating the operation of the RFID reader 104 by 
d^temnining if the. RFID reader will accept predetentuned default settings. Thai is, 
the personalization system .116 may then provide the RFID reader 104 a set of 
default settings (step 708) and detemnine if the RFiD reader 104 accepts those 
settings (step 712). If RFID reader 104 does not accept the default settings, 

10 personalization system 116 may abort the personalization process (step 714). 

If the personalization system 1 1 6 determines that the personalization process 
is not the first pe^onalization process undertaken by the RFID r^der 104 (step 
706), personalization system 116 and RFID reader 104 may engage in a rtiutual 
authentication process using the existing security keys already stored on RFID 

15 reader 104 (step 710). If authentication is unsuccessful (step 712), the 
personalization system may abort the personalization process (step 714). 

Where the personalizafion system 116 and the RFID reader 104 successfully 
mutually authenticate, the peirsorialization system 1 16 may updsite the RFID reader 

■ 

104 security keys (step 716). Updating the security keys may take place at any time 
20 as determined by a system 100 manager. The updating may take place as part of a 

• • > 

roKtine maintenance or. merely to install current security key data. The updating 
may be performed by downloading fimiware into RFID reader 104 (step 718), In the 

■ ■ 

event that the personalization system determines in step 706 that the RFID reader 
' 104 is undergoing an initial personalization, the firmware may be loaded into the 
25 RFID reader 104 for the first time. In this context, 'firmware" may include any file 
which enables the RFID reader 102 to operate under system 100 guidelines. For 
example, such guidelines may be directed toward the operation of RFID reader 
protocol/sequence controller 314. 

■ 

Personalization system 116 may then detemnine if the personalization keys 

30 . (e.g., security keys, decryption keys, RFID identifier) need to be updated or if the 

• • • 

RFID reader 104 needs to have an initial installation oif.the personalization keys 
(step 720). If so. then personalization system 116 may download the 
personalization keys as appropriate (step 722). 
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Personalization system 116 may th^ check the RFID Teader 104 to 
detemvne if the fob 102 identifiers and correisppnding security keys should be 
updated or initially loaded (step 724). If no u|>dating is necessary the 
personalization system may end the personalization procedure (step 732). 
5 Contrarily, if the personalization system 1 16 determines that the fob 102 identifiers 
and con-esponding keys need to be updated or installed, the personalization system 
may download the infonmation onto RFID reader 104 (step 726). The infonmation 
(e.g., fob security keys and identifiers) may be downloaded in an encrypted format 
and the RFID reader 104 may store the infomiation in the RFID reader database 

■ • 

10 310 as appropriate (step 728). The personalisation system may then create or 
update a status log cataloging for later use and analysis by the persorialization 
s^tem 116 user (step 730). Upon updating the status log, the persoriatizatioh 
process may be tenninated (step 732). 

It should be noted that, in some instances it may be necessary to 

15 repersonalize the RFID reader in similar manner as described above. In that 
instance, the personalization method described in FIGS..7A and 7B may be 

■ a 

repeated. 

FIG. 8 illustrates an exemplary flow diagram for the operation of system 
100A. The operation may be understood with reference to FIG. 1A, which depicts 

20 theelernentsofsystemlOOAwhichnray be used in an exenpiary transaction. The 
process is initiated when a customer desires to present a fob 1 02 for payment (step 
802). Upon presentation of the fob 102, the merchant initiates the RF payment 
procedure via an RFID reader 104 (step 804). In particular, the RFID reader sends 
out an interrogation signal to scan for the presence of fob 102 (step 806). The RF 

25 signal may be provided via the RFID reader antenna 106 or optionally via an 
external antenna 108. The customer theri tvay present the fob 102 for payment 
(step 808) and the fob 1 02 is activated by the RF interrogation signal provided. 

The fob 102 and the RFID reader 104 may then engage in mutual 
authentication (step 810). Where the mutual authentication is unsuccessful, an 

30 . error noessage may be provided to the customer via the RiFID optical and/or audible 
indicator (step 814) and the transaction may be aborted (step 816). Where the 
mutual authentication is successful (step 814), the RFID reader. 1 04 may provide the 
customer with an appropriate optical and/or audible message (e.g., transaction 
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processing^ or "wait") (step 818). The fob protocol/sequence controller 208 may 

• " • » • 

then retrieve from database 214 an encrypted fob account number and provide the 
encrypted account number to the RFID reader 104 (step 820). 

The RFID reader 104 may then decrypt the account nunnber and convert the 
5 account number into magnetic stripe (ISO/IEC 7813) format (step 822) and provide 
the unencrypted account number to the merchant system 130 (step 828). In 
particular, the account number may be provided to the POS 110 device for 
transmission to the merchant netvi^ork 112 for processing urider known business 
transaction standards* The POS device 110 may then send an optical and/or 
10 audible transaction status message to the RFID reader 104 (step 830) for 
communication to the customer (step 832). 

I- 

It should be noted that the transaction account assodated with the fob 102 
may include a restricfion, such as, for example, a per purchase, spending limit, a 
time of day use, a day of week use, certain merchant use and/or the like, wherein an 

15 additional verification is required when using the fob outside of the restriction. The 
restrictions may be personally assigned by the fob 102 user, or the account 
provider. For examfrfe, in one exemplary embodiment, the account may be 
established such that purchases above $X (Ae., the spending limit) must be verified 
by the customer. Such verification may be. provided using a suitable personal 

20 identification number (PIN) which may be recognized by the RFID reader 104 or a 
payment authorization center (not shown) as being unique to the fob 102 holder 
(e.g., customer) and the correlative fob 102 transaction account number. Where the 
requested purchase is above the established per purchase spending limit, the 
customer may be required to provide, for example, a PIN, biometric sample and/or 

25 similar secondary verification to complete the transaction. 

Where a verification PIN is used as secondary verification the verification PIN 
may be checked for accuracy against a corroborating PIN which con-elates to the 
fob 102 transaction account number. The conroborating PIN may be stored locally 
(e.g., on the fob 102, or on the RFID reader 104) or may be stored on a database 

30 (not shown) at the payment authorization center. The payment authorization center 
database may be any database maintained and operated by the fob 102 transaction 
account provider. . 
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■ ■ 

The verification PIN may be provided to the POS device 110 using a 

■ 

conventional merchant {e.g., POS) PIN key pad 1 18 in communication with the POS 

m 

* • 

device 110 as shown in FIG. 1, or a RFID keypad in communication with the RFID 
reader 104. PIN keypad may be in communication with the POS device 110 (or 

5 alternatively, RFID reader 104) using any conventional data link described above. 
Upon receiving the verification PIN, the RFID reader 1 04 may seek to rnatch the PIN 
to the corroborating PIN stored on the RFID reader 104 at database 310 or 320. 
Altematlveiy, the verification PIN may be provided to a payment authorization center 
to determine whether the PIN matches the PIN stored on the payment authorization 

10 center database which correlates to the fob 102 account. If a match is made, the 
purchase may no longer be restricted, and the transaction may be allowed to be 
completed. 

in an alternate embodinnent, verification of purchases exceeding the 
established spending limit may involve biometrics circuitry included In fob 102. FIG. 

15 9 is a schematic block diagram of an exemplary fob 102 wherein fob 102 includes a 
biometric security system 902. Biometric security system 902 may Include a 
biometric sensor 904 for sensing the fingerprint of the fob 102 user. The biometric 
sensor 902 may be in communication with a sensor interfoce/driver 906 for receiving 
the sensor fingerprint and activattng the operation of fob 102. In communication 

20 with ttie bionrietric sensor 904 and sensor interface 906 may be a battery 903 for 
providing the necessary power for operation of the biometric security system 
components. 

In one exemplary application of the fob 102 including the biometric security 
system 902, Uie customer may place his finger oh. the biometric sensor to initiate the 

25 mutual authentication process between the fob 102 and the RFID reader 104, or to 
provide secondary verification of the user's Identity. The sensor fingerprint may be 
digitized and compared against, a digitized fingerprint stored in a database {e.g., 
security , database 212) included on fob 102. Such comparison step n^y be 
controlled by. protocol/sequence controller 208. and may be validated by 

30 authentication drcuit 210. Where such verification is made, the rtiutual 
authentication between fob 102 and RFID reader 104 may begin, and the 
transaction may proceed accordingly. Alternatively, the comparison may be made 
with a digitized fingerprint stored on a database maintained by the fob 102 
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transaction accc^nt provider system (not shown). The digitized fingerprint may be 
verified in much the same yftay as is described above with respect to the PIN. 

In one exenplary application of the fob 102 including the biorfietric security 
system 902, the system 902 may be used to authorize a purchase exceeding the 
5 established per purchase spending limit. In this case, where , the customer's 
ihfended purchase exceeds the spending, limit, the customer mSay be asked to 
provide assurance that the purchase is authorized. Accordingly, the customer may 
provfde such verification by pladng his finger over the biometric sensor 90.4. the 

■ 

biometric isensor .904 may then digitize the fingerprint and provide the digitized 
10 fingerprint for verification as described above. Once verified, fob 102 may provide a 
transaction authori2ied signal to RF transponder 202 (or alternatively to transponder 
220) for foHA^rding to RFID reader liD4. RFID reader 104 may then provide the 
transaction authorized signal to the POS device 110 in sirftilar manner as is done 
v\rith convention PIN driven systems and the POS device 110 may process the 
1 5 transaction under the merchant's business as usual standard. . 

The preceding detailed description of exemplary embodiments of the 
invention makes reference to the accompanying drawings, which show the 
exemplary embodiment by way of illustration. While these exerhplary embodiments 

- 

are described in sufficient detail lo enable thpse skilled, in the art to practice the 
20 invention, it should be understood that other embodiments may be realized and that 
logical and mechanical changes may be itiade vvithout departing from the spirit and 
scope of the invention. Thus, the preceding detailed description is presented for 
purposes of illustration only and not of limitation, and the scope of the invention is 
defined solely by the appended daims and their legal equivalents when property 
25 read in light of the preceding description. For exarpple, the steps recited in any of 
the method or process claims may be executed in any order and are not limited to 
the onJer presented. 
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m 

Claims 

■ 

^ ■ « 

Wedaim: 

5 .1. A trahspondeMeader payrnent system comprisin^^^ 

a. a. Radib Frequency Identification (RFID) reader operable to provide a 
radio frequency (RF) inten-ogation signal for powering a transponder system, 
receiving a transponder system RF signal, and communicating a transponder 
system, account data related to said transponder system RF signal to a nnerchant 
1 0 system^ said RFID reader including, 

i. a first interrogator for providing a first RF interrogation signal; 

ii. a RFID authentication circuit in communication with said 

interrogator; 

iii. a RFID ddtal:^se. in communication with said RFID 
15 authentication circuit; 

iv. a universal serial bus (USB) interfiace; and 

V. a RFID protocol/sequence Controller in communication with at 

■ • 

l@ast one of said first interrogator, said RFID authentication drcuit, said RFID 
database, and said USB inlerfece, said RFID protocol/sequence controller 

■ 

20 configured to fediitate control of the order of operation of said interrogator, said 
RFID authentication qrcuit, said RFID database, and said USB interface. 

2. A system according to daim 1 further comprising: 

a. a transponder system operable to receive said first RF interogation 
25 signal, authenticate said first RF intem^gation signal, and transmit said transponder 
. system account data, said transponder system corrprising a 

I. a first transponder responsive to said RF inten^ogaUon signal; 

ii. a second transponder responsive to a second RF interrogation 
signal, said first RF inten'ogation signal different from said second RF interrogation 

30 signal: 

iii. a transponder system authentication circuit in communication 
with at least one of said first transponder and said second transponder; and 
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jv. a transponder system database in communication with said 
transponder system authentication circuit. 

3. A system according to claim 2, wherein said transponder system further 
5 includes: • 

a. . a transponder systeni USB interface; dnd 

b. a transponder system protocol/sequence controller in communication 
with at least one of said first transponder, said second transponder, said 
transponder system USB interface, said transponder system authentication circuit, 

10 and said transponder system database, said transponder s^tem protocol/sequence 
controller configured to control the order of operation of. said first transponder, said 

• • • 

second transponder, said . transporider system authentication circuit, Said 
transponder system database, and said transponder system USB internee. 

■ 

15 4. A system according to claim 1, wherein said RFID reader further includes: 

a. a second interrogator, said second interrogator operable to send a 
second RF intem)gation signal; and 

b. a RFID communications internee configured to communicate with a 
= merchant system, said communications interface ope^bte to provide said 

. 20 transponder system account data. 

5. A system according to dalm 4, wherein said RFID reader further includes a 
first antenna in communication with said first interrogator and a second antenna in 
communication with said second interrogator, wherein said first antenna is operable 

25 to provide said first RF interrogation signal to said first transponder and said second 
interrogator is operable to provide said second RF interrogation signal to said 
second transponder. 

■ 

a 

6. A system according to claim 1, wherein said RFID reader further comprises 
30 at least one of a universal serial bus (USB) ahd a sierial interface. 

7. A system according to claim 1, wherein said RFID database is operable to 
store at least one of a RFID reader identifying data, a transponder system 
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decrypton security key, a RFID reader encryption security key, an transponder 
authentication key and a transponder system personal identification nuriiber (PIN). 

• • • 

9 

* , 

8. A system according to claim 5, wherein 3aid RFID reader further comprises 
5 at lea^t one of a RFID internal antenna, and a RFID external antennd, said RFID 

internal antenna and said RFID external ahtehna configured to provide at least ohe 
of said first RF inten-ogation signal and said second RF interrogation signal. 

9. A system according to claim 2, wherein said tiansponder system further 
10 comprises at least one of a first transponder system antenna and a second 

transponder system antenna, said first transponder system antenna configured to 
receive said first RF intenrogation signal, and said second transponder system 
antenna configured to receive said second RF Inten^iDgation signal. 

• . ■ 

15 10. A system according to daim 3, wherein said transponder system 
protocol/sequence controller is responsive to at least one of said first RF 
Interrogation signal and said second RF inten-ogation signal, said transponder 
protocol/sequence controller controlling the sequence of operation at least one of 
said transponder system authentication circuit, said transponder system database, 
20 and said transponder system USB interface in resporise to at least one of said first 
RF interrogation signal and said second RF inten-ogation signal. 

11. A system according to daim 3, wherein said transponder system 
protocol/Sequence controller is configured to activate said trainsponder system 

25 authentication circuit in response to said first RF interrogation signal, said 
transponder system authenticating drcuit configured to provide an encrypted RF 
interrogation signal, said transponder system authentication drcuit configured to 
provide said encrypted RF interrogation signal to said first transponder for providing 
to said RFID reader. 

30 .■ 

12. A system according to daim 11, wherein said RFID reader is configured to 
receiviB said encrypted RF interrogation signal, said transponder system 
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protocol/sequence controlter activating said transponder systeiil. authentication 
circuit in response to said encrypted RF interrogation signal. 

13. A system according to dairti 12, wherein said RFID datattase is configured to 
5 provide a transponder system decryption key to said RFID authenticeifion circuit in 

response to said encrypited RF interrogation signal, sdid transponder system 
decryption key for. use in decrypting said encrypted RF interrogation signal, 
providing a decrypted RF interrogalion signal, said transponder system decryption 
key provided to said reader based on an unique transponder identification code. 

10 

14. A system according to claim 13, wherein said RFID authenticaUon drcult Is 
configured to compare said decrypted RF intenrogation signal and said RF 
interrogation signal to determine whether a match.exists. 

■ . 

15 15. A system according to claim 14. wherein said RFID protocol/sequence 
controller is configured to activate at least one of said USB interface and said RFID 
communication interface where said RFID authentication circuit matches said 
decrypted RF Interrogation signal and said RF interrogation signal. 

» 

20 16. A system according to daim 15, whereiri said transponder system 
protocol/sequence controller activates said transponder system authentication 
circuit in response to at least one of said first RF inten-pgalioh signal and said 
second RF inten'ogation signal. 

25 17. A claim according to daim 16, wherein said transponder system 
authentication drcuit is configured to provide a transponder authentication code to 
at least one of said first transponder and said second transponder for providing to 
said RFID reader. 

m 

30 18. A system according to daim 17, wherein said RFID reader is configured to 
receive said transponder authentication code, said RF^ID protocol/sequence 
controller activating said RFID authentication circuit in response to said transponder 
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. authenb'cdtion code, said RflD authentication circiiit configure to encrypt said 
transponder authentication code. 

19. A system according to daim 18, wherein said RFID reader is configured to 
5 provide said encrypted authentication code to said transponder system. 

■ ■ 

* ' ■ • 

20. A system according to daim 19, wlier^n said transponder system database 
is operable to store at least one of a transponder system identificafion data, a RFID 

■ ' « ' " • 

reader decryption security key, a transponder system account data. 

■ 

10 

21. A system according to daim 20, wherein said transponder system database 
is configured to provide Said RFID reader decryption security key to ^id 
transponder systerh authentication circuit in response to said encrypted 
authentication code, said RFID reader decfyptim key for use in decrypting said 

15 encrypted transponder authentication code, providing a decrypted transponder 
authentication code. 

22. A system according to daim 21, wherein said transponder system 
authentication drcuit is configured to compare said decrypted transponder 

20 authentication code and said transponder authentication code to determine if a 
match exists. 

■ * ■ 

23. A system according to daim 22, wherein said account data is in . magnetic 
stripe fomiat. 

25 . 

24. A system according to daim 23, wherein said transponder system transaction 
account data is pre-encrypted. 

> 

25. A system according to daim 24, wherein said transponder system database 
30 is configured to provide said pre-encrypted transix>nder systerh account data to said 

RFID reader where said transponder system authentication circuit matches said 
decrypted transponder authentication code and said transponder authentication 
code. 
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26. A system accordihig to daim 25, wherein said RFID communications internee 
is configured to pro\n'de said transponder system PIN and said pre-encrypted 
transponder system account data where said transponder authenticaUon code 

5 matches said decrypted transponder authentication code, and said decrypted RF 

interrogation signal matches said RF intenogation signal. 

^ ■ ■ • ■ - 

27. A systerh according to daim 26, wherein said transponder system further 
comprises a switch, said switch operable to enable or disable operation of said 

10 transponder system. 

■ 

28. A system according to daim 27, wherein said switch is configured to place 
the transponder system in at least one of a selectivity mode and an indusivity mode. 

15 29. A system according to daim 27, wherein said switch is mechanical . 

30. A system according to daim 27, wherein said switch is configured to respond 
to a logic drcuit. 

■ ■ 

20 31. A system according to daim 2, wherein ^id transponder systenrt further 
ifidudes an internal power source. 

32. A system according to daim 31 , wherein said switch is in communication with 
Said intemal power source, said switch responsive to saidintemal power source. 

25 ' 

.33. A system according to daim 31, wherein said transponder system further 
indudes a biometric drcuit, said biometric drcuit in communication with said intemal 
power source. 

■ 

34. A system accorbing to daim 27, wherein said switch is a bitifMetric drcuit. 
said tMometric circuit opetabto to enable or' disenable operation of said transponder 
system. 
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35. A systetn according to daim 34, wherein said biomefric drcuit is configured to. 
place said transponder system in one Of a selectivity mode and an inclusivity mode. 

m 

36. A system according to daim 7, wherein said RFID reader includes a RFID 
5 PiN keypad, said RFID PIN Iceypad configured to receive said transponder PIN, said 

« ■ 

RFID reader configured to compare said transponder PIN to said received 
transponder PIN^ said RFID reader operable to provide at least orie of said received 
transponder PIN, said transponder PIN, or a verificatloif) of said received 
transponder PIN, verification of received transponder PIN provided where said RFID 
Id reader matches said transponder PIN to said received transponder PIN. 

■ 

• ^ ■ 

37. A system according to daim 7, wherein said RFID reader is configured to 
provide said transponder PIN to a payment authorization center for verification of 
said transponder PIN. 

15 

38. A system according to claim 36, wherein said merchant system indudes a 
rherchant system PIN keypad, said merchant system PIN keypad configured to . 
receive said transponder PIN from said merchant system PIN . keypad, said 
merchant system configured to provide said transponder PIN to said payment 

20 authorization center for verification. 

39. A system according to daim 33, wherein said biometric drcuit is configured to 
provide a biometric data verificafion response, said biometric drcuit configured to 
provide said biometric data verification riesponse to at least one of said RFID reader 

25 and said merchant system, wherein said biometric data verification response is an 
identification verification data. 

■ 

40. A system according, to daim 3, further comprising a personalization system 

operable to initialize at least one.of said transponder system and said RFID reader 

• • .■■ ' 

35 to trahspdnder-reader payment system pararneters. 
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41 . A system according to daim 40, wherein said personalization system is in RF 
Communications with said transponder system using at least one of a USB 
connector and RF communications. 

5 42. A system according to daim 41. wherein said personalization system is in 
electrical communicaitions with Sia^^^ 

■ 

■ 

43. A system according to daim 42, wherein said personalization system is 
operable to populate at least one of said RFID reader identifying data, transponder 

10 system decryption security key, RFID encryption security key, and transponder PIN 
on said RFID database. 

44. A system according to daim 43, wherein said personalization system is 
operable to populate at least one of said transponder system identification data, a 

15 RFID . reader decryption security key, a transponder encryption authentication 
security key. a transponder system triansactiondl account data, and a transponder 
system authentication security key onto said transponder system database. 

45. A system according to claim 2, wherein said RFID reader is operable to 
20 initialize said transponder. 

• ■ 

■ ^ ■ • 

46. A system according to daim 2, wherein said RFID reader is in RF 
communication with said transponder system^ said ..RFID reader operable to 
populate at least bne of said transponder system identification data, a RFID reader 

25 decryption security key, a transponder system transactional account data onto said 
transponder system database. 

47. A transponder-reader payment system comprising: 

a transponder system operable to receive a first RF interrogation signal, and 
30 authienticate said first RF inten-ogation signal, said transponder system comprising: 

a. a first transponder resporisive to said first RF intenrogation signal; and 

b. a second transponder responsive to a second RF interrogation signal, 
said first RF ihten-ogation signal different from said second RF intenrogation signal. 
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48. A system according to daim 47. wherein said transponder system further 
includes a transponder system liSB interface. 

5 49. A system according to daim 47, wherein said transponder system further 
indudes a send! inte^ace. 



50. A transponder-reader payment system comprising 

a transponder system operable to receive a first RF interrogation signat^ and 
1 0 authenticate said first RF interrogation signal, said transponder system comprising a 

■ 

transporider system USB interface. 

51 . A transponder-reader payment system cornprising a RFID reader operable to 
provide at least a first interrogator for providing a first interrogation signal and a 

■ 

1 5 second interrogator for providing a second inten-ogatiori signal. 

9 

■ 

■ 

52. A method of transponder-reader payment conprising the steps of: 

a. providing a transponder system, the transponder s^lern responsive to 
a plurality of interrogation signals, the transponder system storing at least one of an 

♦ ^ 

20 account data, an account name, and account expiration date; and 

b. providing a RFID reader, said reader configured to provide at least one 
of the interrogation signals. 

53. A method according to daim 52, further cohrprishg the steps of: 
25 a. encrypting the transponder system account data; 

b. initializing the transponder system; 

c. initializing the RFID reader; 

d. mutually authenticating the RFID reader and the transponder system; 

e. providing the encrypted account data from the transponder system to 
30 the RFID reader; 

f. decrypting the encrypted account data; and 

• • . ■ 

g. providing ttie decrypted account data b a merdiant systera 
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• -• 

54. A method according to claim 53, wherein mutual autheriticating includes the 
RFID reader authenticating the transponder systenn^ and the transponder system 
authenticating the RFID reader. 

■ 

5 55. A method according to daim 54, wherein mutual authentication includes: 

• ■ 

a. providing an interrogation signal from the RFID reader to the 
transponder system; 

b. encrypting the inten'ogation signal at the transponder system to fomn 
an encrypted authentication inteaogation signal; 

10 c. providing the encrypted authenticabon inten'ogation signal to the RFID 

reader; 

d. decrypting the encrypted authentication interrogation signal at the 
RFID reader, decrypting including using a transponder system decryption security 
key; 

■ > ■ 

.1 5 e. matching the interrogation signal to the decrypted inten'ogation signal; 

f. providing an authorization code frorn the trarisponder system to the 
RFID reader; 

g. encrypting the authorization code at the RFID reader to fonti an 
encrypted authorization code: 

20 h. providing the encrypted authorization code to the transponder system; 

.1. decrypting the encrypted authorization code at the transponder 
systehf), decrypting including using a RFID reader decryption security key; 

J. matching the authorization code to. the decrypted authorization code. 

■ 

25 56. A method according to 55, where initializing the transponder system ihcludes . 
populating at least one of a transponder system identification data, a RFID reader • 
decryption security key, a transponder system transactional data, and an encrypted 
transponder PIN onto a transponder system database. 

ft 

30 57. A method according to daim 56, wherein initializing the RFID reader ihdudes 
populating at least one. of a RFID reader identifying data, a transponder system 
decryption security key, a RFID encryption security key, and a transponder PIN onto 
a RFIP database. 

38 



58. A method according to daim 62. wherein initializing the RFID reader iridudes 
populatihg at least one of a RFID reader IdenU^ng data, a transponder system 
decryption security key, a RFID encryption key. and a transponder PIN onto a RJ^ID 

5 t^tidse using a USB Interlace. 

• • • 

59. A method according to claim 56. wherein initializing the transponder system 
indudes populating at least one of a transponder system idenUiRcation date, a RFID 
reader decrypfion security key. and a transponder system transaction data using a 

10 USB interface. 

• m 

60. A method according to daim 52.. wherein initialing the transponder system, 
indudes initializing said transponder system using a RFID reader. 

15 61. A method according to daim 57, indudirig using a switch to enable the 
transponder system, the switdi consisting of at least one of a mechanical switch, a 
logic switch, and a biometric switch. 



62. -A method according to daim 61, induding providing a secondary 
i20 identlficdtibn in response to a request from a merchant system. 
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1. A tiaDsponder-ieader payment system conpisiiig: 
a ' .a Radio Fregueiu^ Identification (RFD) reader 

• ■ 

fieqaency (RP) interrogation signal for powering a transponder system, deceiving a 

■ • 

transponder system RF signal, and commumcatxng a transponder system account dataielated 
to said transponder system RP signal to a merciiant system, said RF^ 

■ • ' ■ ■ 

1 a first intenrogator for pioidding a first RF integojgation signal; 

' , E a RFID authentication drcuit in conmim^ 

■ - 

■ - - • 

m. a RFH) database, in connniniication with said RFIDaufiie^ 
drciiit, said database operable to store at least one of a RFID reader identifying data, a 
transponder system decryption security key, a RFID reader and encryption security key and a 
transponder aa&eatication key, 

17. at least one of a sexial interface and amnversal serial bus (USB) 

iiiter&c^and 

t a 

V. a RFID piotocql/seqaence controller in commmncation with at least 
one of said first interrogiator, said RFID aothenticalion circuit said RFID database, and said 
USB mteiihce, said RFID protocol/seqnence controller configured to fiidUtate control of the 
onier of operation of said interrogator, said RFID authentication drcuit^ said REtD database^ 
and said USB interface. . 



2. A system according to claim 1 farther con^msii^ 

a a transpoiuler system operable to recdve said first RF interrogation. 

■. • 

authenticate said first RP intenogation signal, and transmit said ban^onder system accomit 
data, said transponder system con3)rising: 

ft 

1 a first transponder responsive to said RF interrogation signal; 
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iL a fitst transponder sry^tem anteima cdnfigoied to iecetve said fir^ RF 
intefTOgation signal; 

in. a second tian£i)onderxeq)QiiAsiv« 

» ■ 

sdid jfirst RF interrogation s^ial different fiom said sfedond KF interrogation signal; 

ivr. a second tranq)onder system antenna configiured to recei^^ 
RF interrogation system; 

y. a transponder system attlbenticationcircm 

least one of said first transponder and said second transponder^ snd 

• • ... . _ 

yi a transponder system database in coiiiitiiiiiication "with said tian^onder 

. system aadientication drcoit 

3. A system according to daim2, wherein said transpDndet system finflier includes: 
a. a transponder system USB interface; and 

. b. a transponder system protocol/sequence controller in connmmication with at 

■ > > 

least one of said first traiiq)ondery said second transp^ 

inter&ce, said transponder system authentication drcnit, and said transponder system 

database^ sail transponder system piotocol/seqaence controller configured to control the 

- 

coder of operation of said first transponder, said second transponder,, said transponder system 

* a m 

^thentication drcoit, said transponder syst^ database^ 2ifid saU tiansl^ondcir systeni USB 

^ • • 

inter&ceJ 

> - • 

• • ■ 

4. A system according to daim 1 , ^heifein slaid RFiD reader -fiiifher inchdes: 

a. a second interrogator, said second interrogator operable to send a second RF 
interrogation signal; and 

b. atU'IDcommmncationsinteificeconfigiiiedtocid^^ 

system, said communications interface operable to provide said transponder system account 
data. 
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i 

5. * As]fstcmacc(mlmgtodaim4,wh£mh 

antenna in connnunicalion with said fits t intecrogatar and a secaxul antenjoa in cozmnunicatioii 

mth said second intazogatcn; wherein sdid fir^ antenna is qpoabie to fonrnde^aid first RF 

■ . 

intetrogation signal to said fiist ir^onder and said second interrogator is operable to 

* 

provide said second RF interrog^tioiL signal to said second transponder. 

6. A system according to dahn 1 > wherein said RFID database is operable to store a 
transponder system personal identification mtinber (PIN). 

■ 

7. A system acceding to claim 5, whereiii said RFID reader finihe^ 

• > . 

• . ' 

one of a RFD internal antenna, and a RFID external antenna, said RFID internal antenna and 

V 

i . 

said RFID extonal antenna configaied to provide at least one of said firs t RF interrogation 
dgiial and said second RF interrogation signal 

■ ^ a ^ 

m 

• m 

8. A system according to daim 3, whexetn said transponder systm 

■ , ■ 

controller is responsive to at least one of said first RF intorogation signal and said seirond RF 

■ • • 

intenogadon signal, said transponder protoool/seqaence controller controlling the sequence .. 
of operation at least one of said transponder, systiem authentication circuit said transponder 
system database, and said transponder system USB intetiace in resi)onse to at least one of 
said first RF intenogation signal and said secondRP interrogation signal 

9. A system accordiiig to daim 3, wherem said transponder system piotocol/seqnence 
controller is configured to acth^e said transponder system afiflietttication drcnit in response 

■ 

to said fii^t RF inteirogation signal, said transpimder systm atifl^^ circuit configured ' 

■ ■ 

to provide an enctjpted RF interrogation Signal said transponder system authenticalion 
drcidt configured to provide said encrypted RF intecrogatioii signal to said first transponder 
for providing to said RFID readtf. 

m 

10. A system according to' daim 9, whemn said RFID reader is coafi^nied to receive s aid 
encrypted RF interrogation signal, said transponder system protocdl/sequeaice controller 
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activatiDg said transponder system authentication drcoit in iesponse to said ousypted RF 

■ 

inlenogatbii signal ' 

11. A system according to claim 1 0, wherein said RFID database is oonfigored to provide 
a tzanspbnder systiem decryption key to said RfID aufhenticiatitin crrcuit in response to said 

■ 

encrypted RF inteirogafiDn signal, said transponder system decryption key for use in 
decryptmg said eacrypted RF interrogation signal, piovidmg a decrypted RF intenogation 
signal^ said transponder system decryption key provided to said RFID reader based on an 

■ 

Qxiiqae transponder identification coda 

12. A system according to claim 11» wherein said RFID anthen^^ 

a 

configured to con^are said decrypted RF interrogation signal and said RF intenogatioii 

signal to detemaine whether amatdi exists. 
■ • • • 

13. A system according to claim.l2, wherein said RFID protbcol/seqoence controller is 
configiired to activate at least (m of said USB interfitce and ^ RFID communication ' 
interlace where s^d RFID aufhenticatioii circuit matches said decrypted RF interrogation 
signal and said RF intenogation signal 

14. A system according to claim 13, whaeni said transponder system protocol/sequence 



controller activates said t 







ir:i 





ler system andsentication cnciiit in response to at least one 



of said firstRF interiogation signal and said second RPintearogation signal 

is! A claim acandtng to daim 14, wherein said transponder system atithentication drcmt 

is ccmfigored to provide a transponder authentication code to at least one of said first 

transponder and said second transponder for providing to said RFID reader. 

- 

16. A^ystemaccordiiig to claim 15, wbenin said RFID reader is confi 

■ 

siaid transponder authentication code, said RFID protocol/sequence controller activating said 

■ 

RFID aofhenticatioa circuit inrespoose to said transponder antheiitication code^ ^sid RFID 
auttientication circuit configure to encrypt said transponder anthentication coda 



43 

SUBSTITUTE SHEET (RULE 26) 



wo 03/007623 



vcrmmnim 



17. A system acconlii% to daim 1 6, wherda said KFID leader is ccmfignred to provide 
said encrypted anthcnticatioii code to said transponder system. 

18. A system accoidiiig to cUdm 1 7, whecein said ttansppnder System database is operable 



to store at least one of a tranq;)Qnder system identification data, a KFID reader deciyptioA 
secodty key, and a tran^nder systetii account data. 

19. A system according to daim 1 8, yi^herem said transponder system database is 
configured to provide said RFID reader decryption security key to said transpondeat system 
aufl&ntication circoit iaTeq)onse to said enoypted aathcntir>ation.cod^ said RFID reader 

deoyption key for use in decrypting said encrypted transponder anxflieiiticatioii code and 

. - • • 

providing a decrypted transponder autbenficaticdi code; 



20. A system according to daim 19, wherein said trattsponder.5ystem andieuticatioxi 

. drcuit is configured to compare, said decrjpted transpoinder aoflientication c6ds and said 

- 

transponder authentication code to detemnne if a m^ch exists. 

21. A system according to daim 20, wherein said account data is in magnetic stdpe 
format 

22. A system according to daim 21, wherein said transponder system transaction account 
data is pre-encrypted. 

■ 

.23. • A system according to daim 22, wherein said transponder system dalabase is 

m 

. configured to.piovide said pre-cnoypted transpoioder system sccoinst data to said SFD 

* 

- - • 

reader where said transponder system authentication circuit matdies..said decrypted 
tcdn^onder aafiientication code and said transponder authentication code; 

ications intet&ce is 



ilMIIMll 



24. A $ystem according to daim 23, wherein said RFID co] 

. ■ 

configured to provide said tran^onder system PIN and said pfe-encrypted transponder 
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transponder aafhai&ation code, and said deicrjpted RF intenog^cm signal niaicbes said RF 

« 

intenogation signal 

25. A system accorduig to danb 24, therein said Imspmki system fa!rliier coniprises a 

s^fnUih, said switch opoable to enable or disable operation of said transp Qndei system. 

■ 

26. A system according to daim 25, wherein said switch is configured to place the 
transponder system in at least onie of a sdectivifymode and an inclnsiyity mode. 

27. A system according to daim 25»whareinsaid switch is inec^ ' 



oonfiemed to lesDfma 



toa 



2S. A system according to daim 25, 

■ ■ 

logic circuit 

■ 

29: A system according to claini 2, wherem said transponder system firrfher iiscihdes an 
internal power sonrccL 

30. A system according to daim 29, wherein said switch is in coxmnmncatiQn with said 

■ 

internal power source, said switchresponsive to said intecnal powier sonrce. 

31. A system according &) claim 29, wherein said transponder system ibrtheri^^ a 

■ 

biometric circnit, said biomeCric circuit in comrnmncarionwith said internal power source. 

32. A system according to daim 25, wherein said switch is a biometric circmt, said ' 

■ ■ 

biometric drcnit operable to enable or disenable opes^tum of said transponder system. 

• • , - 

33. Asystemaccordtngto.daim32,wheieinsaidU coiifigured to place 

-■ 

said transponder system in one of asdectiritymode and aninchsinfymoda 

* * 

34. . A system according to daim 7, wherem said RFID reader inc^ 

* ■ 

keypad, said RFID PIN keypad coi^gored to leceive said transponder PIN, said KFID reader 

■ 

configured to compare said transponder PIN to said received transponder PIN, said RFID 
tesider operable to provide at least one of said received tran^onder PIN, said transponder 



PIN,oraverij 



I KM in 



of said received t 












lor PIN, voificatioii of leteived taanqiaiider 
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PIN provided where said RFID leader matebes said'transpcmdar PIN to said received 



transponder PIN. 

35. A system accoxdiDg to claim 7, wherein said RFID leader is confiigared to provide 

PIN to apayatebt auQidDzation center fiir venfication oif said tran^onder 



PIN. 

36. A system accordiDg to dam 34, wherem said machaot system indades amoclia&t 

■ 

system PIN keypad, said merchant system PIN keypad oonfiguied to leceive. said transponder 

■ 

PIN fiom said merchant system PIN keypad, said merdiant system configared to provide said 
trans^ponder PIN to sddpaytnent aQ&^ 

37. A system accotdmg to daimSl) wherein saidbipmetric circuit is configared to 
intcfvide aHoiiietric dataverificationiiBsponse« saidbiomefric circuit configared to provide 



said biometric data verification tespixnse to at least one of said RFID reader and said 
mffrg^ffnt system, wherein said bioraetric data verification response is an identification 
verification dataL 

38. A system according to daim 3, fbrdier conprising a personalization system operable 
to initialize at least one of said transponder system and said RFID reader to transponder- 
reader payment system parameters. 

• * • . • 

• ■ 

3$. . A8ystemaccordi^gtodaim38^whermsi^ddpelsonaUzatiQnsys^ 

• ' • 

contmiinication with said transponder system tskg at least one of a USB connector and RF 
commnnications. 

40. A system according to daim39, wherem saidposonaHzation s^emis in electrical 
commonications wifii said RFID reader. 

41. A system aiscording to daim 40, wherein saidpersonaUzalion systeol is bp^le to 
populate at least one of said RFID reader ideiiti^g data, transponder system decryptif 
security key, RFID encryption security key, and transponder PIN on said RFID database 
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42. A systezn atccbrdiiig to daioi 4 1 , wherein said peisonaiizatioii s:ysteQi is opdrable to 
pqjpulate at least one of said transponder system identification data^ a RFED tedder decryptidn 

• • • 

siecuzity key, a transponder encryption aathenticatLon secoiify key, a tracDspoiider ^stem 

w 

t^iiisa^onat accoimt d^ and a transponder sysCem anthenticatian secmify key ontd said • 
transponder system database 

43. A system accoidiDg to claim 2, v/herm, said RFED reader is q)erable to initialize said 
transponder. 

■ 

44. A system according to claims, wherein said RPID reader is in RP coWmifhioati^ 
iirifh said tianq)onder system, said RIW teada ope^ 

transponder system identificatiaii data, a RFID reader decTyption securify key, a tr^bsponder 



system transactional acconnt data onto said transponder systto databa$& 

45. A transponder-reader picymeat system inchidmg a transponder system operable to 

receive a first RF interrogation signal, and antfaenficate said first RF interrogation signal, said 



tran^onder system conopising;' 

a . a first transponderiesponsive to said first RFideEh>gati6n signal; 
b. a second transponder responsive to a second RFxnteriogatidn sip 



said first RF interrogation signal dififerent fiom said second RF intetxogation signal; 

m 

& a first tran^csider system antcamaconfigored to recdvies 

• ■ • 

interrogation signal; and 

ft 

d a second transponder.system antenna' configored to rec^ve said second 
RF interrogation signal 

46. A system aceordizig to claim 45, ^ivherein said transponder system fiuthcr indnded at 
least one of a transponder system USB interface^ transponder syStan antheatication circuit • 
aad a tranq)onda systemsenalmiaraee. 



47. A tRDsponder-ieadcr payment system coiqxisiiig: 
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a. aRPIDieaderc^erabletoifforvideaRFi^^ 
transponder systeo], lecei^^ 



—J 


1 















4 



system, said RFID leader iochiding: 

i a fiistBlQD reader antexmmcoiimiiuucation^ 

■ 

forproYidiDgafiistRFmtem>gatiQnsig^ and 

■ 

. ii a seccmdfU^ reader anteim.incoiti^^ 

■ • 

. ■ ■ . 

interrogator^ for providmg a secbiid RFiD^^ 

. b. a tran^nder system operable to receive at le^ 

■ 

• ■ » ■ ■ 

SF inteirogatioii signal, aufheoticate said recenn^-inteirpgatiQa signal, imi transmit a 
transponder system accomit data, said tcanq[x>nde^ 

1 afiisttraxispcmdeTanteimaincox^ 
said fiist transponder responsive to said first BF inteccogation sig^ and 

ft 

ii a second transponder anteona in c( 
transponder, said second ban^onder responsive to said second SF ioleirogation signal 

48. A system according to daim 47» wkrein said RFID reader iadudes at least one of a a 
RFID reader autiie&tication drcoit, a RFlD reader serial inteifiice toad a RFID reader USB 
inteifiLce, and said transponder system inclodes at least one of a transponder system USB 
intev&ce, transponder system aofhcntication drcuit^ and a transponder system serisd interfice. 

49. A method of transponder-reader payrnentcooQX^^ • 

a * providing a transponder systeDi».fhe transponder system responsive to 

■ 

plorality of interrogation signals, the transponder system storing at least one of an account 

■ 

data, an accoiint name^ and account espiraition date, the transponder system inchiding at leaist 



i]iiMiniii[»r^ I 



• 

ication with a second 



afiist transponder re^caisive to afirstintem>gationsi^^ 
responsive to a second intetrog^on signal; and 



onder 
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b. providing a RFID reader, said reader configured to provide at least one of the 
aiie[rogation.sigiials. 

* 

50. A mediod according to daim 49, fiirther colnpzisiDg tiie steps o£ 



b.. 
a 
d 



imtiali?mg the transponder systen^ 
initializing file RFID reader, 

xnatualfy anthenticatiDg tlie RFID reader and the trao^nder sfitena; 
providing (he encrypted account data fiom the transp onder system to the RFID 



£ • decrypting the encrypted account data; and . 

■ 

g. pioTiding the decrypted aocoimt data to ai&ea^^ 



51. A notethod accordmg to daiai 50, whoein mntnal aalhenficatrng ind 



tffaf1ffr a^thffft^>4^tF"E *ran?ynnder system^ and the transponder system fliithentfcatfng thp 

RFIDreader. . 

52. A method according to daim 51, wherein mutual authentication indudes: 

■ a 

a piovidiiiganintetrogationsigDalfiomtheKPIDrcader to thetra^ 

■ 

■ 

systeno^ 

■ . 

b. encrypting die interrogation signal at the tran^ 

■ 

eiioypted anfhenticatum intettogatian signal 

a providing the encarypted aulhenticaation interrogation signal to Oie RFID reader; 
d. deorypting the encrypted authentication interrogatian sjgnal at the RFID 

■ 

reader, deti^pting induding using a Ijransponder system decryption securi^ ke^ 

a 

& matdrmgflieintem>g9tionsigDdtDfliedeca7ptedinterrogati^ 
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providing ail authodzadoa cod^ 



leadci; 



g, eAcryptiiig ilie aa totzati^ 
datlionzadon code; . 



k . providing tbe cDOTpted aufhorizatu^ 

L decrypting (he encrypted autiumzation code at the tcanspooder system, 

decryfitiiig including using a RFD reader deciyiption secuiify key; and 

j. xnatdong Ae aufhoiizatiaii code to fte diecrypted an&otizalian code. 
• • • 

53. A jDsibod according to 52» Tvhere initialiang the tran^nder sy^temindndiss 
populating at least one of a tran^Kmder system identificatioa data, a RFDD reader dectyp 

second key; a transponder system transactional data, and an enoypted transponder PIN onto 

■ ■ • ". . 

a transponder system'database. ' 

54. A metfabd according to daim S3, wheirem imtiaMog the RFID reader indades 



■ I 01 



populating at lease one of a .tranq[>0!nder system identification data, a RFID reader decryption 
security k^, a tran^nder system transactional data, and an encrypted transponder PIN onto 
a transponder system database. 

55. A method according to daim 49, vhereia imfeah'Taiig the RFID leaderindudes 

■ 

identi^g data, a tntnsponder system, decryption 

lerPIN onto aRFID database 







It 


















seconly key, a RFID caption secDnty key, and a 

■ • 

uisingaUSBinterfice. 

m 

56. A meOiod according to daim 53, wlKreminitializnsth^ 

populating at least one of a transp onder system identifying data, a RFID reader decryption 

seeoritykey, abd d transponder system transaction datft using a USB inteir&ceL 



57. A method according to claim 49, wheiem 
initializing said transponder system osing a RFID reader. 



IK 1 1 kin*) I [I 



la system, indttdes 
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58. A me&od accordiDg to claim 54, inchdiiig nskg a switch to eiiatble tte traiDspanidet 



systaH, {he switch coBsisttog of at least oiie of a: 
biometiic switch. 



* • 



cal switch, a bgic switcb, and a 



59.. Amethod apcoidmg to datoiSS, nich^iDgpzt^vidmg as^com^ 

■ 

response to aieqaest from a xofirchaotsysteiiL .. 



■ • m 
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